[vpnc-devel] SPAM-LOW: Re: Alternate routes

Bryan Stevenson bryan at electricedgesystems.com
Mon Feb 4 18:40:22 CET 2008 

Thanks Tomas,

On Mon, 2008-02-04 at 10:45 +0100, Tomas Kopal wrote:
> Hi Bryan,
[snip]
> No need to create forked vpnc-script.sh. Just add "Script 
> /etc/vpnc/local-setup" to your vpnc.conf file. local-setup file
> should 

I don't have a vpnc.conf file in /etc/vpnc.....but I did create one and
tried it with 2 times....each with a different line

Try 1 the file contents were:
Script /etc/vpnc/local-setup

2nd try:
/etc/vpnc/local-setup

> look something like:
> 
> #!/bin/sh
> # This is a wrapper for the vpnc-script overriding some variables
> needed
> # for my local VPN connection
> 
> # this effectively disables changes to /etc/resolv.conf
> INTERNAL_IP4_DNS=
> 
> # This sets up split networking regardless of the concentrators 
> specifications.
> # You can add as many routes as you want, but you must set the
> counter 
> $CISCO_SPLIT_INC
> # accordingly
> CISCO_SPLIT_INC=1
> CISCO_SPLIT_INC_0_ADDR=aaa.aaa.aaa.aaa
> CISCO_SPLIT_INC_0_MASK=bbb.bbb.bbb.bbb
> CISCO_SPLIT_INC_0_MASKLEN=cc
> CISCO_SPLIT_INC_0_PROTOCOL=0
> CISCO_SPLIT_INC_0_SPORT=0
> CISCO_SPLIT_INC_0_DPORT=0
> 
> # run the original script
> . /etc/vpnc/vpnc-script
> 
> Change the aaa.aaa.aaa.aaa to the IP address of the network behind
> the 
> VPN (e.g. 192.168.0.0), bbb.bbb.bbb.bbb is the netmask of the network 
> behind VPN (e.g. 255.255.0.0) and cc is the length of the netmask 
> (number of valid bits in the network address, e.g. 16 in this case).
> 
> Hope this helps.
> 
> Tomas

When connected to the VPN, the destination IP was : 192.197.150.122
So I used 192.197.150.0 for CISCO_SPLIT_INC_0_ADDR (as the first 3
octets matter and the last can change)

the netmask was 255.255.255.255 so I used 255.255.255.0 (same reason as
above)

For CISCO_SPLIT_INC_0_MASKLEN I used 24 (for the first 3 octets).

There was no noticeable change in VPN behavior...still unable to send
mail when connected.

BTW I set the chmod for the local-setup and vpnc.conf files to 755

I should mention that I am using KVPNC 0.90 with VPNC 0.40-3ubuntu2

So I suppose it's possible that script alterations made by KVPNC could
be effecting things??

TIA

Cheers


-  

Bryan Stevenson B.Comm.
VP & Director of E-Commerce Development
Electric Edge Systems Group Inc.
phone: 250.480.0642
fax: 250.480.1264
cell: 250.920.8830
e-mail: bryan at electricedgesystems.com
web: www.electricedgesystems.com
 
Notice:
This message, including any attachments, is confidential and may contain
information that is privileged or exempt from disclosure. It is intended
only for the person to whom it is addressed unless expressly authorized
otherwise by the sender. If you are not an authorized recipient, please
notify the sender immediately and permanently destroy all copies of this
message and attachments.

More information about the vpnc-devel mailing list