]> git.ipfire.org Git - people/ms/network.git/blobdiff - src/helpers/ipsec-updown
projects / people / ms / network.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
ipsec: VTI keys are static now and don't need to be updated
[people/ms/network.git] / src / helpers / ipsec-updown
diff --git a/src/helpers/ipsec-updown b/src/helpers/ipsec-updown
index 1e6c69551110fe8fc27e7e6815da03a0c1aa40ce..41a4daeffdd75d3feffe95cb3d4b36e78b396fd7 100644 (file)
--- a/src/helpers/ipsec-updown
+++ b/src/helpers/ipsec-updown
@@ -61,16 +61,10 @@ case "${PLUTO_VERB}" in
                        fi
 
                        # Update peer and local address
-                       if ! ip_tunnel_change "${ZONE}" --remote="${PLUTO_PEER}" --local="${PLUTO_ME}"; then
+                       if ! ip_tunnel_change "${ZONE}" \
+                                       --remote="${PLUTO_PEER}" --local="${PLUTO_ME}"; then
                                return ${EXIT_ERROR}
                        fi
-
-                       # Set keys for VTI devices
-                       if device_is_vti6 "${ZONE}" || device_is_vti "${ZONE}"; then
-                               ip_tunnel_change_keys "${ZONE}" \
-                                       --ikey="${PLUTO_MARK_IN%/*}" \
-                                       --okey="${PLUTO_MARK_OUT%/*}"
-                       fi
                fi
 
                #Get sources IP for routes
Networking code of IPFire 3.x.