Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

On Linux, with "install_routes = no", charon creates a rule 220 but no table #1626

Open
pjuhen opened this issue Mar 26, 2023 · 1 comment
Open

On Linux, with "install_routes = no", charon creates a rule 220 but no table #1626

pjuhen opened this issue Mar 26, 2023 · 1 comment

Comments

@pjuhen
Copy link

pjuhen commented Mar 26, 2023

System (please complete the following information):

  • OS: Fedora 36 and Openwrt 22.03
  • Kernel version 6.2.7
  • strongSwan version(s): 5.9.9 on Fedora, 5.9.8 on Linux
  • Tested/confirmed with the latest version: [yes/no]

Describe the bug
I set "install_routes = no" in charon.conf
However, a rule 220 is created

$ ip rule show
0: from all lookup local
220: from all lookup 220
32766: from all lookup main
32767: from all lookup default

But the corresponding table is non-existent

[]$ sudo ip route show table 220
Error: ipv4: FIB table does not exist.
Dump terminated
$

Seems to be harmless.

To Reproduce
Steps to reproduce the behavior:

  1. create an IKE_SA and child_SA "with install_routes = no" in charon.conf

Expected behavior
Rule #220 should not be created

Additional context
Same issue on 5.9.9 (Fedora) and 5.9.8 (Openwrt)
@tobiasbrunner
Copy link
Member

I don't really think there is an issue here..

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@tobiasbrunner @pjuhen