[Openswan dev] IPsec over IPv6 including 6to4 ... some success, and some documentation opportunities

Paul Wouters paul at xelerance.com
Wed Oct 1 15:09:12 EDT 2008


On Wed, 1 Oct 2008, Anthony Tong wrote:

> I have modifications too for 2.4.x to handle the ipv6 routes, but
> there is an issue with route cleanups that I havent had time
> to look at closely and I am not even sure whether openswan is the
> culprit. os is rhel5.

Please use openswan 2.6.x when using NETKEY. There are many fixes for
dealing with the ip xfrm state/policies that are not in openswan 2.4.x.
Also, _startnetkey doesn't do any of the KLIPS related routing hacks.

Paul


More information about the Dev mailing list