[Gllug] Please fix my network (reward offered)
Bruce Richardson
itsbruce at uklinux.net
Fri Dec 17 11:06:22 UTC 2004
On Thu, Dec 16, 2004 at 09:37:15PM +0000, Jan wrote:
>
> Now as I look at it it seems strange. You have 2 routes thru the same
> IP but different devices, which doesn't make much sense:
That is how FreeSwan works. It has it's own separate routing table. A
FreesWan-patched kernel will examine packets before they go through the
conventional routing process and divert any packets that match its own
"eroutes" to the appropriate ipsec interface. You cannot, therefor, fix
Freeswan problems by manipulating the main routing table.
This is one of several reasons why I prefer the new "native" Linux ipsec
implementation, which applies security policies to the standard routing
tables.
--
Bruce
Hummingbirds are the only birds that can fly backwards, apart from
ostriches if you punch them hard enough.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 261 bytes
Desc: Digital signature
URL: <http://mailman.lug.org.uk/pipermail/gllug/attachments/20041217/87b829a9/attachment.pgp>
-------------- next part --------------
--
Gllug mailing list - Gllug at gllug.org.uk
http://lists.gllug.org.uk/mailman/listinfo/gllug
More information about the GLLUG
mailing list