Bug #2554: bypasslan creates passthrough for route with nexthop set - strongSwan

Bug #2554

bypasslan creates passthrough for route with nexthop set

Added by Noel Kuntze over 7 years ago. Updated over 7 years ago.

Status:

Closed

Priority:

Normal

Assignee:

Tobias Brunner

Category:

kernel-interface

Target version:

5.6.3

Start date:

Due date:

Estimated time:

Affected version:

5.6.2

Resolution:

Fixed

Description

The bypasslan plugin installs passthroughs for routes that are not for directly attached networks. It shouldn't do that.

swanctl -P

[...]
bypass-lan/Bypass LAN 52.29.117.25/32, PASS
  local:  52.29.117.25/32                  
  remote: 52.29.117.25/32  
[...]

ip r

default via 192.168.178.1 dev br0 
52.29.117.25 via 192.168.178.65 dev br0 mtu lock 1300 
[...]

History

#1 Updated by Tobias Brunner over 7 years ago

Tracker changed from Issue to Bug
Category set to kernel-interface
Status changed from New to Feedback
Assignee set to Tobias Brunner
Target version set to 5.6.3

Agreed. I noticed that I explicitly excluded routes with RTF_GATEWAY in the kernel-pfroute plugin, so makes sense to do the same in the kernel-netlink plugin.

I pushed a fix to the 2554-local-lan-gateway branch. Let me know if this works for you.

#2 Updated by Noel Kuntze over 7 years ago

That solves this issue. I found one/two more. See #2555.

#3 Updated by Tobias Brunner over 7 years ago

Status changed from Feedback to Closed
Resolution set to Fixed

Project

General

Profile