updown: Install forwarding rules with the actually used protocol
authorMartin Willi <martin@revosec.ch>
Wed, 9 Oct 2013 12:48:50 +0000 (14:48 +0200)
committerMartin Willi <martin@revosec.ch>
Fri, 11 Oct 2013 08:15:22 +0000 (10:15 +0200)
src/_updown/_updown.in

index d851b5a..ca0398a 100644 (file)
@@ -283,7 +283,7 @@ then
        IPSEC_POLICY_OUT=""
 else
        KLIPS=
-       IPSEC_POLICY="-m policy --pol ipsec --proto esp --reqid $PLUTO_REQID"
+       IPSEC_POLICY="-m policy --pol ipsec --proto $PLUTO_PROTO --reqid $PLUTO_REQID"
        IPSEC_POLICY_IN="$IPSEC_POLICY --dir in"
        IPSEC_POLICY_OUT="$IPSEC_POLICY --dir out"
 fi