Exporting IPSec routes to OSPF
Michael Ludvig
mludvig at logix.net.nz
Mon Jul 8 06:57:09 CEST 2013
Hi
I've got a handful of Linux IPsec gateways, some running OpenSwan some
with ipsec-tools. Each gateway handles a number of tunnels with dozens
of remote subnets. Unfortunately these remote subnets don't show up in
the Linux routing table, i.e. "ip route show" only comes up with the
standard two records for the link subnet and for the default route.
Obviously bird doesn't see the ipsec routes either.
Now I've got a script that parses the output of "ip xfrm policy show"
and exports them as static routes but that involves a manual rebuild
every time the tunnels change and "birdc configure" to propagate the
changes.
Is there any way to automatically export these ipsec routes to OSPF?
Thanks!
Michael
More information about the Bird-users
mailing list