Bug 14956 - /etc/cipe/options is misleading
Summary: /etc/cipe/options is misleading
Keywords:
Status: CLOSED RAWHIDE
Alias: None
Product: Red Hat Linux
Classification: Retired
Component: cipe
Version: 7.0
Hardware: i386
OS: Linux
high
medium
Target Milestone: ---
Assignee: Nalin Dahyabhai
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2000-08-01 09:48 UTC by Pekka Savola
Modified: 2008-05-01 15:37 UTC (History)
0 users

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2000-08-01 09:48:30 UTC
Embargoed:

Attachments (Terms of Use)

Description Pekka Savola 2000-08-01 09:48:28 UTC 
The stock /etc/cipe/options reads as follows:

---
# The static key. Keep this file secret!
# The key is 128 bits in hexadecimal notation.
#key             3248fd20adf9c00ccf9ecc2393bbb3e4

# You shouldn't have to modify anything past this point.

# The peer's IP address.
#ptpaddr         6.5.4.3
# Our CIPE device's IP address.
#ipaddr          6.7.8.9

#maxerr		-1
[ ... ]
---

This is highly misleading.  If you don't define ptpaddr and ipaddr, ciped
process won't even
start properly.  'me' and 'peer', on the other hand, can be ignored (due to
way ciped is started).

Please move the comment line down like 5-10 lines, depending on how crucial
you feel maxerr definition is.  For server-server VPN links setting it to
-1 would be helpful (ciped won't quit even after a lot of invalid packets
etc.)

Perhaps it would be good to change the defaults of ptpaddr and ipaddr to
some reserved
IP address space, like 10.0.0.1 and 10.0.0.2?  Or, something rarer like
172.16.100.1 and 172.16.100.2.
Comment 1 Nalin Dahyabhai 2000-08-07 09:27:45 UTC 
cipe-1.3.0-10 will include the ability to set IPADDR and PTPADDR values in the
sysconfig file, and the init script will pick them up (or not) depending on
whether or not they are defined.
Note You need to log in before you can comment on or make changes to this bug.