[Openswan Users] What does openswan/netkey by way of a default route?

Tuomo Soini tis at foobar.fi
Wed Mar 10 13:35:32 EST 2010

Whit Blauvelt wrote:
> Tuomo,
> Thanks, but I am not, and have not, used %defaultroute. I don't want to.
> That is not, I believe, connected with my question Openswan not working in a
> situation where there has not been a default route statement in the main
> routing table, and Openswan's complaining on startup that it can't determine
> the default route. If all Openswan uses a default route from main routing
> table for is to fill in %defaultroute, why does it even complain, with no
> %defaultroute in ipsec.conf?

Because startup scripts don't know if you were using %defaultroute in
config or not at the point where default route is checked.

> There is no use of "%defaultroute" in my ipsec.conf. There has not been. Yet
> pluto is not just working. I want to find the way to fix it that depends
> neither on %defaultroute nor on having a default route in my main routing
> table.

I don't say it's simple to get ipsec working with multiple default
routes. First of all. you must make sure that correct routing table with
only one default route is used when source ip is one used by openswan.

Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <http://foobar.fi/>

More information about the Users mailing list