Dimitri Papadopoulos Orfanos

> I'm having the same problem. This problem happens even with SELinux disabled That's definitely strange: how can a SELinux errors occur when SELinux is disabled? In any case SELinux...

I agree there's an issue with IPv4 / IPv6. Example: - My home network is both IPv4 and IPv6 capable. - My corporate network is mainly IPv4 as far as...

I'm afraid I don't understand the issue here (I don't have a strong background in networking). An example would help me understand.

My guess would be you're after [_ipv4_protect_tunnel_route_()](https://github.com/adrienverge/openfortivpn/blob/68ddf5c/src/ipv4.c#L728) or something like that. Look in `src/ipv4.c`.

I don't think so. The operating system handles network routing globally, not on a process by process basis. Why would you want to do that? There are probably other ways...

My wrong. See [Using Linux Network Namespaces for per processes routing](http://www.evolware.org/?p=293) for example.

But then you need to handle routing yourself. Have a look at the _[How to add specific routes using pppd](https://github.com/adrienverge/openfortivpn/wiki#how-to-add-specific-routes-using-pppd)_ section of the wiki.

I see, the requirements make perfect sense indeed: in some cases you might not trust the VPN provider, typically when an organization gives you access to part of their own...

Would we need to consider other LCP parameters? This works with `pppd` on Linux but I cannot find anything similar in `ppp` on FreeBSD. Do you have any clue?

I think FortiClient handles dead peer detection that at the PPP level, see for example https://gitlab.com/openconnect/openconnect/-/commit/e1eac267 - but perhaps in upper layers too. * [Technical Tip: How to modify the...