ifup-ipsec adds route
Bill Nottingham
notting at redhat.com
Tue Nov 11 16:35:43 UTC 2003
David T Hollis (dhollis at davehollis.com) said:
> I recently managed to get the Linux 2.6 IPSEC up and running using the
> ipsec-tools RPM that was briefly in Rawhide. While converting to use
> the support that is in initscripts for IPSEC, I noticed that the scripts
> attempt to create an IP route:
>
> ip route add to $DSTNET via $DST
>
> if it's a tunnel connection. In my scenario (which I think is the
> pretty typical scenario of LAN_A -> gw1 -> Internet <- gw2 <- LAN_B),
> that call fails with: RTNETLINK answers: Network is unreachable.
It's needed in some scenarios, namely when you can't get to $DSTNET
via your normal default gateway.
Bill
More information about the devel
mailing list