[Openswan Users] IP packets does not use IP-sec

[Paul Wouters]

On Wed, 10 Aug 2005, Stefan Lüthje wrote:

> I'm upgrading from freeswan (kernel 2.4.x) to openswan 2.2 (kernel
> 2.6.12-4), but I run into some trouble: All IP packets, which should run
> through the tunnel, are not encrypted. The connection is estableshed.
> Where is my mistake?

You are running tcpdump on the vpn gateway that is running the NETKEY ipsec
stack. The packets are encrypted after tcpdump seems them.
To properly see things, you have to use another host to run tcpdump on.

Paul