[Openswan Users] Query about "interfaces" with NETKEY
Paul Wouters
paul at xelerance.com
Fri Oct 16 12:55:41 EDT 2009
On Fri, 16 Oct 2009, Nick Howitt wrote:
> Reading the ipsec.conf manual, it says that with NETKEY it says
> interfaces=%none must be used. I've been using interfaces=%defaultroute
> up to now with no problems. When I changed it to %none and restarted
> ipsec, i got the following errors in /var/log/messages:
>
> Oct 16 14:37:46 server ipsec__plutorun: 022 connection must specify host
> IP address for our side
> Oct 16 14:37:46 server ipsec__plutorun: 037 attempt to load incomplete
> connection
> Oct 16 14:37:46 server ipsec__plutorun: 022 connection must specify host
> IP address for our side
> Oct 16 14:37:46 server ipsec__plutorun: 037 attempt to load incomplete
> connection
> Am I correct in assuming the manual is incorrect and
> interfaces=%defaultroute is valid with NETKEY?
Yes you are, though I would have expected %none to work as well. Perhaps
Tuomo can shed some light on this?
Paul
More information about the Users
mailing list