[Openswan Users] Why I have 2 tunnels up on Openswan?

[Michael Furman]

I have started to use Openswan on Centos6 and was able to configure Host to Host using the following document: 

https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/6/html/Security_Guide/Host-To-Host_VPN_Using_Openswan.html


My configuration is following (on both sides):


        conn tunnel1
        left=x.x.0.2
        leftrsasigkey=0sA…iww==
        right=x.x.0.1
        rightrsasigkey=0sA…qrQ==
        authby=rsasig
        # load and initiate automatically
        auto=start
        

    
I have enabled tunnel using the following command:

    ipsec auto --add tunnel1           
    ipsec auto --up tunnel1


Why I have 2 tunnels up?
I see it on both sides

    service ipsec status
    IPsec running  - pluto pid: 27830
    pluto pid 27830
    2 tunnels up
    some eroutes exist







 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20151012/1f211aaa/attachment-0001.html>