[Swan] dev lo route error
Paul Wouters
pwouters at redhat.com
Fri Jan 4 19:26:44 EET 2013
On 01/04/2013 12:13 PM, Nick Howitt wrote:
> In Oguz' Yilmaz's case he appears to have a right specified
> (right=RIGHT_EXT_IP) and a leftnexthop (leftnexthop=LEFT_EXT_GW) rathr
> than right=%any and no leftnexthop. :(
you can use /usr/libexec/ipsec/addconn --verbose connname to get a
verbose output that includes the routes we got back for making the decision.
> We have hit some minor odd issues - ipsec auto --status does not give
> any info on phase2alg unless it is specified. It may also fail if it is
> specified with the hash function e.g. aes256-sha1 but I need to test
> further and my time for testing is very limited. But this should all be
> for another thread......
I've filed that as https://bugs.libreswan.org/show_bug.cgi?id=53 but I
also have not had the time yet to look into this.
Paul
More information about the Swan
mailing list