While digging around in the logs for something else, I stumbled across a number of messages like this:
Mar 16 08:09:51 myhost charon: 15[CHD] updown: iptables: Bad rule (does a matching rule exist in that chain?).
Mar 16 08:09:51 myhost charon: 15[CHD] updown: iptables: No chain/target/match by that name.
Any ideas as to what’s causing this? Bad configuration on my part, or should I open a bug?
I’m guessing that the problem lies somewhere in /usr/libexec/ipsec/_updown ?
Tom