[Openswan Users] rightsubnetwithin broken in 2.6.31 ?
Paul Wouters
paul at xelerance.com
Thu Dec 16 12:43:49 EST 2010
On Thu, 16 Dec 2010, Francis GASCHET wrote:
> It looks broken in 2.6.31 : even if the peer presents its /32 subnet,
> OpenSwan replaces it with the peer's public address. The eroute is
> established this way...
subnetwithin= is not really supported. We've been planning to remove it but
I believe there are one or two corner cases that uses it.
> If I replace the "rightsubnetwithin" with a "rightsubnet=x.x.x.x/32",
> everything looks fine... But I've to create a connection description for
> each road warrior!
virtual_private= together with rightsubnet=vhost:%priv should do that too?
Paul
More information about the Users
mailing list