Charles,
Thank you very much!
BTW what effect does setting the spoof to NO have?
Jason Massey
"Charles Steinkuehler" <[EMAIL PROTECTED]>
04/12/2002 11:39 AM
To: <[EMAIL PROTECTED]>, <[EMAIL PROTECTED]>
cc:
Subject: Re: [Leaf-user] Exact error messages from Floppy VPN endpoint
(Dachstein
based) - CORRECTION!!!
These are normal for FreeS/WAN. Some types of tunnels run fine with
rp_filter enabled, despite the warnings (specifically
subnet-subnet...maybe
others). You may, however, have to disable this for your VPN links to
work
right...IIRC, host-host tunnels require rp_filter to be 0.
To control rp_filter on a per-interface basis, use the
<interface>_IP_SPOOF=[YES|NO] feature of network.conf (ie you probably
want
to set eth0_IP_SPOOF=NO to make the warnings go away).
Charles Steinkuehler
http://lrp.steinkuehler.net
http://c0wz.steinkuehler.net (lrp.c0wz.com mirror)
_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
