hello,
runs fine for me on macppc and i386 against a Cisco Systems, Inc./VPN
3000 Concentrator Version 4.1.7.Q
suggestions:
- remove .orig files
- install a sample split tunnel script
split.sh:
#!/bin/sh
# this effectively disables changes to /etc/resolv.conf
INTERNAL_IP4_DNS=
# This sets up split networking regardless
# of the concentrators specifications.
# You can add as many routes as you want,
# but you must set the counter $CISCO_SPLIT_INC
# accordingly
CISCO_SPLIT_INC=1
CISCO_SPLIT_INC_0_ADDR=10.0.0.0
CISCO_SPLIT_INC_0_MASK=255.255.0.0
CISCO_SPLIT_INC_0_MASKLEN=16
CISCO_SPLIT_INC_0_PROTOCOL=0
CISCO_SPLIT_INC_0_SPORT=0
CISCO_SPLIT_INC_0_DPORT=0
. /etc/vpnc/vpnc-script
- patch against vpnc-script that not existing routes get not
removed(prevents error messages in split tunnel mode). but i do
know how to check if a route exists which handle "special" netmask
because route/netstat shows routes in cidr notation.
tomorrow i will see if dead peer detection and rekeying works.
thomas
On Wed, Sep 12, 2007 at 09:47:08PM -0500, Aaron Hsu wrote:
> The compressed archive of the port is available at
>
> <http://www.sacrificumdeo.net/vpnc.tar.gz>
>
>
> --
> ((name "Aaron Hsu")
> (email/xmpp "[EMAIL PROTECTED]")
> (phone "703-597-7656")
> (site "http://www.aaronhsu.com";))
>
