Re: Need help creating proper routes / iptables for VPN

---

• From: ibuprofin@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx (Moe Trin)
• Date: Wed, 05 Jan 2011 20:48:31 -0600

---

On Tue, 04 Jan 2011, in the Usenet newsgroup comp.os.linux.networking, in
article <ig07kq$10pr$1@xxxxxxxxxxxxxxx>, Pascal Hambourg wrote:

Moe Trin a écrit :

Note also that the 'defaultroute' option in pppd will not replace
an existing default

Note that some distributions provide a patched pppd that supports a
'replacedefaultroute' modifier to the 'defaultroute' option to allow
to replace the default route.

============================
Message-ID: <UELTo.5091$jj5.1526@xxxxxxxxxxxx>
Date: Sat, 01 Jan 2011 14:55:34 -0500
From: James Carlson <carlsonj@xxxxxxxxxxxxxxx>
Newsgroups: comp.protocols.ppp
Subject: Re: adding a ppp default gw while a eth0 default gw exist

] niv wrote:

]] if ppp finds a default route it wont add its own default route.

] Correct. This is intentional -- if an administrator has set a
] default route, then it's assumed that it's really a "default route:"
] i.e., it's a route that can be used to reach all possible IP nodes
] that don't otherwise have more specific routes.
============================

Both Carlson and Paul Mackerras have been saying this for well over 16
years (see the ppp-2.1.2d/SETUP from Al Longyear from 1994 as well as
the ppp-2.1.2d/ChangeLog) - and that included when someone at SUSE
proposed the 'replacedefaultroute' option several years ago. It's a
poorly thought out concept with conflict, security and abuse issues.
If an existing default needs to be replaced, WHY WAS IT SET (or mis-set)
IN THE FIRST PLACE?

Old guy
.

---

• Follow-Ups:
  • Re: Need help creating proper routes / iptables for VPN
    • From: Pascal Hambourg

• References:
  • Need help creating proper routes / iptables for VPN
    • From: alumnizx
  • Re: Need help creating proper routes / iptables for VPN
    • From: Moe Trin
  • Re: Need help creating proper routes / iptables for VPN
    • From: Pascal Hambourg

• Prev by Date: Re: Need help creating proper routes / iptables for VPN
• Next by Date: Re: Need help creating proper routes / iptables for VPN
• Previous by thread: Re: Need help creating proper routes / iptables for VPN
• Next by thread: Re: Need help creating proper routes / iptables for VPN
• Index(es):
  • Date
  • Thread

---

Relevant Pages Re: Need help creating proper routes / iptables for VPN ... 'replacedefaultroute' modifier to the 'defaultroute' option to allow ... proposed the 'replacedefaultroute' option several years ago. ... The PPP link may become the preferred default route when established. ... through the VPN, and still need a preexisting default route to connect ... (comp.os.linux.networking) Re: "noauth" pppd snit with kubuntu ... but at one time there was a "replacedefaultroute" option ... On connection shutdown, the old default route is restored automatically. ... In fact, a google search on ... (comp.os.linux.misc) Re: dynamic routing question ... On Wed, 12 Jul 2006, in the Usenet newsgroup linux.redhat, in article ... , Greg Hackney wrote: ... Linux box at home, ... The default route is set to the faster connection, ... (linux.redhat)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• Mailing-Lists
• Newsgroups
• About
• Privacy
• Search
• Imprint

linux.derkeiler.com  > Newsgroups  > comp.os.linux.networking  > 2011-01