diff options
-rwxr-xr-x | sysconfig/network-scripts/ifdown-ipsec | 2 |
1 files changed, 2 insertions, 0 deletions
diff --git a/sysconfig/network-scripts/ifdown-ipsec b/sysconfig/network-scripts/ifdown-ipsec index cbc8e2df..37785642 100755 --- a/sysconfig/network-scripts/ifdown-ipsec +++ b/sysconfig/network-scripts/ifdown-ipsec @@ -57,6 +57,7 @@ if [ "$MODE" = "host" ]; then setkey -c << EOF spddelete $SRC $DST any -P out; spddelete $DST $SRC any -P in; + spddelete $DST $SRC any -P fwd; EOF else [ -z "$SRCNET" ] && SRCNET="$SRC/32" @@ -67,6 +68,7 @@ else /sbin/setkey -c >/dev/null 2>&1 << EOF spddelete $SRCNET $DSTNET any -P out; spddelete $DSTNET $SRCNET any -P in; + spddelete $DSTNET $SRCNET any -P fwd; EOF fi |