Andy Gay wrote:
Just tried it, and it works as advertised.
... except that OpenSwan will rip out the route and install a route
pointing to eth0, thus breaking the thing again.
Use a custom updown script with Openswan to fix that.
*Nod.*
I'm thinking that David definitely has a point about having a usability
problem, though. All other kind of tunnels have endpoint devices
associated with them, and that would make all these kinds of problems go
away, plus would be nicer to deal with in iptables, dealing with routed
IPsec connections, etc.
-hpa
-
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to [EMAIL PROTECTED]
More majordomo info at http://vger.kernel.org/majordomo-info.html