From 43ad36dade936db85613914a9a852cc1a56409aa Mon Sep 17 00:00:00 2001 From: Stig Thormodsrud Date: Tue, 15 Apr 2008 11:06:42 -0700 Subject: Fix 3046: vpn: transport mode not working with current vyatta config --- scripts/vpn-config.pl | 14 ++++++-------- 1 file changed, 6 insertions(+), 8 deletions(-) diff --git a/scripts/vpn-config.pl b/scripts/vpn-config.pl index 925b234..b82ebfd 100755 --- a/scripts/vpn-config.pl +++ b/scripts/vpn-config.pl @@ -424,10 +424,6 @@ if ($vcVPN->exists('ipsec')) { # Write tunnel configuration # my $leftsubnet = $vcVPN->returnValue("ipsec site-to-site peer $peer tunnel $tunnel local-subnet"); - if (!defined($leftsubnet) || $leftsubnet eq "") { - $error = 1; - print STDERR "VPN configuration error. No 'local-subnet' specified for peer \"$peer\" tunnel $tunnel.\n"; - } if (defined($leftsubnet) && $leftsubnet eq 'any') { $leftsubnet = '0.0.0.0/0'; } @@ -462,10 +458,6 @@ if ($vcVPN->exists('ipsec')) { $rightsubnet .= ",%no"; } } else { - if (!defined($remotesubnet) || $remotesubnet eq '') { - $error = 1; - print STDERR "VPN configuration error. The 'remote-subnet' has not been specified while 'allow-nat-networks' has not been enabled for peer \"$peer\" tunnel $tunnel. Either one required.\n"; - } $rightsubnet = $remotesubnet; if (defined($rightsubnet) && $rightsubnet eq 'any') { $rightsubnet = '0.0.0.0/0'; @@ -615,6 +607,12 @@ if ($vcVPN->exists('ipsec')) { if (!defined($espmode) || $espmode eq '') { $espmode = "tunnel"; } + if ($espmode eq "transport") { + if (defined $leftsubnet or defined $rightsubnet) { + $error = 1; + print STDERR "VPN configuration error. Can not use local-subnet or remote-subnet when using transport mode\n"; + } + } $genout .= "\ttype=$espmode\n"; # -- cgit v1.2.3 From 796183044599df0db3ac4c0e7a3cb26fc5bd6604 Mon Sep 17 00:00:00 2001 From: Mark O'Brien Date: Wed, 16 Apr 2008 09:50:06 -0700 Subject: VC4.0.2 --- debian/changelog | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/debian/changelog b/debian/changelog index 5d4bf0f..77e8e8c 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,16 @@ +vyatta-cfg-vpn (0.5) unstable; urgency=low + + VC4.0.2 + [ Mark O'Brien ] + + + [ Stig Thormodsrud ] + * Fix 3046: vpn: transport mode not working with current vyatta config + + [ Mark O'Brien ] + + -- Mark O'Brien Wed, 16 Apr 2008 09:50:06 -0700 + vyatta-cfg-vpn (0.4) unstable; urgency=low 3.0.2 -- cgit v1.2.3 From 68a637455ba7597a72ea4f619657c09a2bbe4906 Mon Sep 17 00:00:00 2001 From: Mark O'Brien Date: Sat, 19 Apr 2008 11:56:04 -0700 Subject: VC4.0.2 --- debian/changelog | 7 +++++++ 1 file changed, 7 insertions(+) diff --git a/debian/changelog b/debian/changelog index 77e8e8c..56b3738 100644 --- a/debian/changelog +++ b/debian/changelog @@ -1,3 +1,10 @@ +vyatta-cfg-vpn (0.6) unstable; urgency=low + + VC4.0.2 + + + -- Mark O'Brien Sat, 19 Apr 2008 11:56:04 -0700 + vyatta-cfg-vpn (0.5) unstable; urgency=low VC4.0.2 -- cgit v1.2.3 From 148b670a90c70bf8430a8ec3f084aefa7fb2aa27 Mon Sep 17 00:00:00 2001 From: rbalocca Date: Mon, 21 Apr 2008 12:30:23 -0700 Subject: Indicate the VC4.0.2 release candidate in the changelog --- debian/changelog | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/debian/changelog b/debian/changelog index 56b3738..9b24e7a 100644 --- a/debian/changelog +++ b/debian/changelog @@ -7,7 +7,7 @@ vyatta-cfg-vpn (0.6) unstable; urgency=low vyatta-cfg-vpn (0.5) unstable; urgency=low - VC4.0.2 + VC4.0.2 release candidate [ Mark O'Brien ] -- cgit v1.2.3