On Sat, 11 May 2024 15:45:47 +0100 James Cowgill <[email protected]> wrote:
> I ended up writing a patch which does something similar in the > network-manager plugin - it manually invokes the SIOCSIFDSTADDR ioctl > on the ppp device to switch the peer address to a new fake address. > This seems to work to remove the bad route. Doing this feels really > hacky though and I'm kind of hesitant to upload it unless approved by > upstream! Hi, here is an alternative workaround that does not require to compile anything: A networkmanager dispatcher script that's supposed to go into /etc/NetworkManager/dispatcher.d (with root as owner/group, NB: IPv4 only). It removes the bad route that blackholes the gateway IP and also removes the local IP from the "via" of the issued routes. -- with kind regards/mit freundlichen Grüßen, Stefan Tauner Embedded Systems Engineer - Kernel Penguins A&R-Tech, Dietz-von-Weidenberg-Gasse 2, 1210 Wien FN 181686 k. HG Wien, UID-Nr. ATU 47056901, zertifiziert nach ISO 9001:2015 (Nr. AT-04036/0), ISO 22163:2023 (IR-00009/0), ISO 14001:2015 (U7-05420/0) und ISO 27001:2022 (Nr. AT-00075/0) Der Inhalt dieser E-Mail ist vertraulich und ausschließlich für die bezeichneten Adressat*innen bestimmt. Wenn Sie nicht zu den vorgesehenen Adressat*innen dieser E-Mail oder deren Vertreter*innen gehören sollten, so beachten Sie bitte, dass jede Form der Kenntnisnahme, Veröffentlichung, Vervielfältigung oder Weitergabe des Inhaltes dieser E-Mail unzulässig ist. Wir bitten Sie, sich in diesem Fall mit der*dem Absender*in der E-Mail in Verbindung zu setzen und die E-Mail zu vernichten. Für Übermittlungsfehler oder sonstige Irrtümer bei der Übermittlung besteht keine Haftung. This e-mail is intended solely for the person to whom it is addressed and may contain confidential or legally privileged information. Access to this e-mail by anyone else is unauthorized. If an addressing or transmission error has misdirected this e-mail, please notify the author by replying to this e-mail and destroy this e-mail and any attachments. E-mail may be susceptible to data corruption, interception, unauthorized amendment, viruses and delays or the consequences thereof. If you are not the intended recipient, be advised that you have received this e-mail in error and that any use, dissemination, forwarding, printing or copying of this e-mail is strictly prohibited.
90-fortisslvpn-fixroutes
Description: Binary data
