[Openswan Users] VPN goes down every couple minutes
Mike Johnston
mjohnston at wiktel.com
Tue Jan 21 12:44:23 EST 2014
I tried adding a comma:
rightsubnets={10.100.100.0/24,10.100.101.0/24}
and I tried putting spaces next to the braces:
rightsubnets={ 10.100.100.0/24 10.100.101.0/24 }
I also tried these combinations:
rightsubnets={ 10.100.100.0/24,10.100.101.0/24 }
rightsubnets={ 10.100.100.0/24, 10.100.101.0/24 }
rightsubnets={10.100.100.0/24, 10.100.101.0/24}
all with the same result when restarting the ipsec service:
ipsec_setup: defaulting rightsubnet to 10.100.100.1
I know that both subnets are being recognized because I can can ping
hosts on both networks and because "route -n" includes:
Destination Gateway Genmask Flags Metric Ref Use
Iface
10.100.100.0 0.0.0.0 255.255.255.0 U 0 0 0 bond0
10.100.101.0 0.0.0.0 255.255.255.0 U 0 0 0 bond0
This leads me to think that this error message can just be ignored, as
the VPN otherwise works as desired.
Nick, I do like your idea of using a /23, but I would rather have a
future-proof config that allows me to later add more ip ranges that are
non-contiguous.
Thanks for your help guys!
Mike Johnston
More information about the Users
mailing list