From: Jean-Sebastien Morisset (jsmoriss_at_mvlan.net)
Date: Wed Jul 31 2002 - 21:59:10 CEST
After I start freeswan and bring up the VPN, my routing table looks
like:
10.2.1.0/24 dev vmnet8 proto kernel scope link src 10.2.1.160
10.2.2.0/24 dev vmnet1 proto kernel scope link src 10.2.2.160
10.1.1.0/24 via 10.1.2.1 dev wlan0
10.1.2.0/24 dev wlan0 proto kernel scope link src 10.1.2.160
10.1.2.0/24 dev ipsec1 proto kernel scope link src 10.1.2.160
127.0.0.0/8 dev lo scope link
0.0.0.0/1 via 10.1.2.1 dev ipsec1
128.0.0.0/1 via 10.1.2.1 dev ipsec1
default via 10.1.2.1 dev wlan0 metric 2000
Notice the:
10.1.2.0/24 dev wlan0 proto kernel scope link src 10.1.2.160
10.1.2.0/24 dev ipsec1 proto kernel scope link src 10.1.2.160
The first line causes packets to be routed to the un-encrypted
interface (and filtered by the firewall). If I remove this line, then
everything is fine.
Is there any setting I can use to have freeswan replace and not add a
new route?
Thanks,
js.
-- Jean-Sebastien Morisset, Sr. UNIX Administrator <jsmoriss_at_mvlan.net> Personal Home Page <http://jsmoriss.mvlan.net:8080/> "With sufficient thrust, pigs fly just fine." -- RFC 1925 _______________________________________________ Users mailing list Users_at_lists.freeswan.org http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.4 : Mon Aug 05 2002 - 21:01:35 CEST