[Openswan Users] Updown script deletes other tunnel which use also option ?
Anand Raj Manickam
anandrm at gmail.com
Tue Oct 16 09:33:59 EDT 2012
> Hi ,
> I m facing a issue , where the when the updown script gets invoked on
> Tunnel Delete ,
> ipsec auto --delete T1-XYZ , deletes other tunnel which share the
> "also" option in the config .
>
> My ipsec.conf
> conn T1-123
> left=103.1.1.1
> right=113.1.1.4
> leftsubnet=20.20.10.0/255.255.255.0
> rightsubnet=10.10.10.0/255.255.255.0
> type=tunnel
> also=T1
>
>
> conn T1-678
> left=103.1.1.1
> right=113.1.1.4
> leftsubnet=20.20.11.0/255.255.255.0
> rightsubnet=10.10.10.0/255.255.255.0
> type=tunnel
> also=T1
>
>
> conn T1
> authby=secret
> ike=aes-md5-modp1024
> phase2alg=aes-md5;modp1024
> pfs=yes
> ikelifetime=86400s
> salifetime=3600s
>
> In this above config , when i delete T1-678 , it also deletes T1-123
> , this evident in the updown script,
> which is invoked 2 times with PLUTO_VERB set to down_client .
>
> I m using Openswan 2.6.37 , Linux Kernel 2.6.30.8 and Netkey .
>
> Is there a option to fix this ?
More information about the Users
mailing list