I had the same problem. Had to disable ipsec interfaces to make things
work. Though the routing rules were in correct order, packets went to
ipsec interface.
Finally, I removed the patch.
> -----Original Message-----
> From: lartc-bounces@mailman.ds9a.nl
[mailto:lartc-bounces@mailman.ds9a.nl]
> On Behalf Of Seba Tiponut
> Sent: Monday, June 25, 2007 7:48 PM
> To: lartc@mailman.ds9a.nl
> Subject: [LARTC] Using Julian Anastasov's 'routes' patches on 2.4
kernel
> inconjunction with IPSec
>
> Hello,
>
> I use Julian Anastasov 'routes' (to be more specific: static_routes,
> alt_routes and nf_reroute) patches on a 2.4.32 kernel. On the same
host I
> run
> IPSec. I have discovered after a few hours of networking problems
that,
> when IPSec is enabled on that patched kernel, inspecting packets with
> tcpdump
> while arping-ing a host from a network physically connected to this
> machine,
> the arp requests show up on the ipsecX interface instead of the ethX
> interface. When IPSec isn't running, Julian's code works fine. I
suspect
> it
> has something to do with having two interfaces with the same data
(ipsecX
> mirroring the configuration from ethX).
> Can anyone give me a hint on how could I solve this problem? I've
googled
> a
> long time to no avail and I don't have the necessary skills to debug
the
> networking code from kernel.
>
> Cheers,
> Seba.
> _______________________________________________
> LARTC mailing list
> LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
|