xelerance
commented
10 years ago Comment by: Ruben Laban On Tue Aug 30 14:21:06 2011
I currently work around this by utilizing leftsourceip= parameters.
Open xelerance opened 10 years ago
xelerance
commented
10 years ago Comment by: Ruben Laban On Tue Aug 30 14:21:06 2011
I currently work around this by utilizing leftsourceip= parameters.
Issue 1208 from www.openswan.org Created by: Ruben Laban On Fri Feb 11 14:34:29 2011
Priority: Normal Status: New
Scenario: left has a full BGP table without a default route. right has a subnet that's not within an BGP advertised network.
Problem: After bringing up a tunnel between left(subnet) and right(subnet), one can't ping from left to rightsubnet, because of "no route to host".
Possible solution: Add an "addroute=yes/no" option to ipsec.conf which would add a route to rightsubnet pointing to the uplink interface (any other interface doesn't work) upon tunnel establishment.
Remark: I haven't tested this with IPv4, yet. The problem does exist at least with IPv6.