From: Florian Boor (boor_at_unix-ag.org)
Date: Fri Oct 04 2002 - 12:26:06 CEST
Hallo!
Situation is following:
- freeswan gateway, 192.168.2.253 is providing internet access for SSH-Sentinel clients.
- this works great :-)
- we added on router 192.168.2.111 to route to 192.168.4.0/24
- added static route to 192.168.4.0/24 on the gateway, this works too
- now a SSH-Sentinal client in 192.168.4.0/24 wants to connect to 192.168.2.253,
this does not work
i get this error message in the gateway (192.168.2.253) after SSH-Sentinel started the connection:
Oct 4 12:06:44 proton Pluto[13963]: "roadwarrior" 192.168.4.100 #66: route-client output:
SIOCADDRT: Network is unreachable
Oct 4 12:06:44 proton Pluto[13963]: "roadwarrior" 192.168.4.100 #66: route-client output:
//lib/ipsec/_updown: `route add -net 192.168.4.100 netmask 255.255.255.255 dev ipsec0 gw
192.168.4.100' failed
Oct 4 12:06:44 proton Pluto[13963]: "roadwarrior" 192.168.4.100 #66: route-client output:
//lib/ipsec/_updown: (incorrect or missing nexthop setting??)
Oct 4 12:06:44 proton Pluto[13963]: "roadwarrior" 192.168.4.100 #66: route-client command exited
with status 7
Oct 4 12:06:44 proton Pluto[13963]: ERROR: "roadwarrior" 192.168.4.100 #66: pfkey write() of
SADB_DELETE message 1636 for Delete SA esp.24c6f426_at_192.168.2.253 failed. Errno 3: No such process
I used SSH-Sentinel 1.3 and FreeS/WAN 1.95.
Is there a problem with the route command executed from the script?
Maybe "route add -host ..." should be better in this case!?
Greetings
Florian
-- The dream of yesterday Florian Boor is the hope of today Tel: 0271-7411487 | Fax: 0180-5052 5393 9324 and the reality of tomorrow. florian.boor_at_bsystems.de | boor_at_unix-ag.org [Robert Hutchings Goddard, 1904] 4F:69:4E:9D:65:3B:C1:C1:7A:C3:BF:D3:99:F6:68:B0 _______________________________________________ Users mailing list Users_at_lists.freeswan.org http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Tue Oct 08 2002 - 05:20:20 CEST