My mistake, including patch below:
For split tunnels, we currently set a default IPv6 route for any pushed
route with a subnet mask smaller than 128. Instead, we should only set a
default route for a subnet mask of length 0.
Signed-off-by: Alexander Huynh <alex at grande.coffee>
---
vpnc-script | 6 +++---
1 file changed, 3 insertions(+), 3 deletions(-)
diff --git a/vpnc-script b/vpnc-script
index 6a55546..d7c7099 100755
--- a/vpnc-script
+++ b/vpnc-script
@@ -881,10 +881,10 @@ do_connect() {
while [ $i -lt $CISCO_IPV6_SPLIT_INC ] ; do
eval NETWORK="\${CISCO_IPV6_SPLIT_INC_${i}_ADDR}"
eval NETMASKLEN="\${CISCO_IPV6_SPLIT_INC_${i}_MASKLEN}"
- if [ $NETMASKLEN -lt 128 ]; then
- set_ipv6_network_route "$NETWORK" "$NETMASKLEN" "$TUNDEV"
- else
+ if [ $NETMASKLEN -eq 0 ]; then
set_ipv6_default_route
+ else
+ set_ipv6_network_route "$NETWORK" "$NETMASKLEN" "$TUNDEV"
fi
i=`expr $i + 1`
done
--
2.18.0
