[Openswan Users] IP packets does not use IP-sec

Paul Wouters paul at xelerance.com
Wed Aug 10 23:36:40 CEST 2005


On Wed, 10 Aug 2005, Stefan Lüthje wrote:

> I'm upgrading from freeswan (kernel 2.4.x) to openswan 2.2 (kernel
> 2.6.12-4), but I run into some trouble: All IP packets, which should run
> through the tunnel, are not encrypted. The connection is estableshed.
> Where is my mistake?

You are running tcpdump on the vpn gateway that is running the NETKEY ipsec
stack. The packets are encrypted after tcpdump seems them.
To properly see things, you have to use another host to run tcpdump on.

Paul


More information about the Users mailing list