On 2010-11-25, Andrea Parazzini <a.parazz...@sirtisistemi.net> wrote: > As you can see there is a flow that is not configured on our box. > It is probably configured on the remote peer. > Is a normal behavior?
Yes. This is especially fun when you end up accidentally routing all traffic from a 100mb-connected site down an ADSL link by getting a flow for 0.0.0.0/0 added... > How can I protect myself from an incorrect configuration on the remote > peer? isakmpd.policy(5), and have some aspirin ready for the inevitable headache.