[Openswan Users] Two or more interfaces found, checking IP forwarding [FAILED]

Leto letoams at gmail.com
Fri Jul 12 13:58:20 UTC 2013 

It is a bug in old perl version of the 'ipsec verify' command. ignore it.

sent from a tiny device 

On 2013-07-12, at 8:12, Patrick Naubert <patrickn at xelerance.com> wrote:

> Rescued from the Spam bucket.  Please remember to subscribe to the mailing list before posting to it.
> 
> 
> From: "Mikael Hagstrom" <mikael at hagstroem.net>
> Subject: Two or more interfaces found, checking IP forwarding [FAILED]
> Date: 10 July, 2013 3:02:47 PM EDT
> To: users at lists.openswan.org
> 
> 
> Hi,
> 
> I'm trying to configure Openswan on Ubuntu 13.04. I get "Two or more interfaces found, checking IP forwarding            [FAILED]" When I run "ipsec verify". I have tried adding 
> 
> net.ipv4.conf.*.send_redirects=0
> net.ipv4.conf.*.accept_redirects=0
> 
> for all my network interfaces and set net.ipv4.ip_forward = 1 but I still get the error message. I'm don't know what I'm doing wrong and any help would be very welcome.
> 
> Regards,
> 
> Mikael
> 
> --------ls /proc/sys/net/ipv4/conf/------
> all  default  eth0  eth1  lo  wlan0
> -----------------------------------------
> 
> -----ipsec verify------
> Checking your system to see if IPsec got installed and started correctly:
> Version check and ipsec on-path                                 [OK]
> Linux Openswan U2.6.38/K3.8.0-26-generic (netkey)
> Checking for IPsec support in kernel                            [OK]
>  SAref kernel support                                           [N/A]
>  NETKEY:  Testing XFRM related proc values                      [OK]
>     [OK]
>     [OK]
> Checking that pluto is running                                  [OK]
>  Pluto listening for IKE on udp 500                             [OK]
>  Pluto listening for NAT-T on udp 4500                          [OK]
> Two or more interfaces found, checking IP forwarding            [FAILED]
> Checking NAT and MASQUERADEing                                  [OK]
> Checking for 'ip' command                                       [OK]
> Checking /bin/sh is not /bin/dash                               [WARNING]
> Checking for 'iptables' command                                 [OK]
> Opportunistic Encryption Support                                [DISABLED]
> --------------------------------
> 
> 
> -----/etc/sysctl.conf-----
> 
> # IPSec Verify Compliant
> net.ipv4.conf.default.send_redirects=0
> net.ipv4.conf.all.send_redirects=0
> net.ipv4.conf.eth0.send_redirects=0
> net.ipv4.conf.eth1.send_redirects=0
> net.ipv4.conf.lo.send_redirects=0
> net.ipv4.conf.wlan0.send_redirects=0
> net.ipv4.conf.default.accept_redirects=0
> net.ipv4.conf.all.accept_redirects=0
> net.ipv4.conf.eth0.accept_redirects=0
> net.ipv4.conf.eth1.accept_redirects=0
> net.ipv4.conf.lo.accept_redirects=0
> net.ipv4.conf.wlan0.accept_redirects=0
> 
> net.ipv4.ip_forward = 1
> 
> ------------------------------------
> 
> ------ifconfig-------------
> eth0      Link encap:Ethernet  HWaddr 00:16:cb:ae:21:d5  
>           UP BROADCAST MULTICAST  MTU:1500  Metric:1
>           RX packets:0 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:1000 
>           RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)
>           Interrupt:16 
> 
> eth1      Link encap:Ethernet  HWaddr 02:26:b0:a7:9a:84  
>           UP BROADCAST MULTICAST  MTU:1500  Metric:1
>           RX packets:0 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:1000 
>           RX bytes:0 (0.0 B)  TX bytes:0 (0.0 B)
> 
> lo        Link encap:Local Loopback  
>           inet addr:127.0.0.1  Mask:255.0.0.0
>           inet6 addr: ::1/128 Scope:Host
>           UP LOOPBACK RUNNING  MTU:65536  Metric:1
>           RX packets:530 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:530 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:0 
>           RX bytes:47614 (47.6 KB)  TX bytes:47614 (47.6 KB)
> 
> wlan0     Link encap:Ethernet  HWaddr 00:1c:b3:b2:8d:43  
>           inet addr:10.0.1.8  Bcast:10.0.1.255  Mask:255.255.255.0
>           inet6 addr: fe80::21c:b3ff:feb2:8d43/64 Scope:Link
>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>           RX packets:2927 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:3084 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:1000 
>           RX bytes:1438598 (1.4 MB)  TX bytes:497589 (497.5 KB)
> ------------------------------------------
> 
> 
> 
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20130712/7b203326/attachment-0001.html>

More information about the Users mailing list