[Openswan Users] Openswan + IPv6 [PATCH]

zze-DURBEC Mathieu FTRD/DTL/ISS mathieu.durbec at rd.francetelecom.com
Thu May 27 12:18:19 CEST 2004


 Sorry.... Here is my ipsec.conf

Conn connipv6
	connaddrfamily=ipv6
	auth=esp
	right=2001:688:1f8b:1001::2
	left=2001:688:1f8b:1001::1
	auto=add

Matt

-----Original Message-----
From: zze-DURBEC Mathieu FTRD/DTL/ISS 
Sent: jeudi 27 mai 2004 11:15
To: 'users at lists.openswan.org'
Subject: RE: [Openswan Users] Openswan + IPv6 [PATCH]

 Thank you Mikael,

But I still have problems...
Now the parser works fine, but I got an error message from whack

"/usr/local/libexec/ipsec/whack : unrecognized option `--tunnel--ipv6'

I think a space is missing between --tunnel and --ipv6...
And isn't it more correct with "--tunnelipv6" instead of --tunnel ?
Do you know where I could fix it ??

Cheers 

Matt


-----Original Message-----
From: Mikael Magnusson [mailto:mikaelmagnusson at tjohoo.se]
Sent: jeudi 27 mai 2004 11:01
To: zze-DURBEC Mathieu FTRD/DTL/ISS
Cc: users at lists.openswan.org
Subject: Re: [Openswan Users] Openswan + IPv6 [PATCH]

On Thu, May 27, 2004 at 10:41:12AM +0200, zze-DURBEC Mathieu
FTRD/DTL/ISS wrote:
>  
> Hello,
> 
> I'm trying to do the same thing that you(ie openswan+ipv6+automatic 
> tunnel), but I get stuck to set up automatic tunnel.
> My system is a linux redhat 9.0, with a 2.6.6 kernel and patched with 
> your file I've tried manual keying with the whack command, and 
> everything works fine.
> But when I try to do the automatic way, the Ipsec.conf parser doesn't 
> understand the ipv6 adress:
> 
> " whack error : "myconnection" non-ipv6 adress may not contain `:'
> "2001:688:1f8b:1001::1" "
> 
> Maybe I miss an option in ipsec.conf...
> 
> Any idea ??
> 

Yes, you need to add "connaddrfamily=ipv6" to your ipv6 connections.


Mikael




More information about the Users mailing list