> I posted an inaccurate error message. The correct errors are: > > ipsec_setup: Starting FreeS/WAN IPsec 1.91... > ipsec_setup: Warning: ipsec0 has route filtering turned on, KLIPS may not > work > ipsec_setup: (/proc/sys/netr/ipv4/conf/ipsec0/rp_filter = '1', should be > 0) > ipsec_setup: Warning: eth0 has route filtering turned on, KLIPS may not > work > ipsec_setup: (/proc/sys/netr/ipv4/conf/eth0/rp_filter = '1', should be > 0)
These are normal for FreeS/WAN. Some types of tunnels run fine with rp_filter enabled, despite the warnings (specifically subnet-subnet...maybe others). You may, however, have to disable this for your VPN links to work right...IIRC, host-host tunnels require rp_filter to be 0. To control rp_filter on a per-interface basis, use the <interface>_IP_SPOOF=[YES|NO] feature of network.conf (ie you probably want to set eth0_IP_SPOOF=NO to make the warnings go away). Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
