[Openswan Users] Reg AH n ESP configuration using whack
shyam
shyam at rocsys.com
Mon Mar 5 08:30:31 EST 2007
Hi,
I have configured a test ipsec tunnel between two systems
the tunnel is established. But im not able to c any AH header im able to
view only ESP header.
How can i modify the below setup so that i can have only AH
or both AH and ESP
just by removing --encrypt and adding --authenticate options isnt
showing any effect
any pointers would be greatly helpful
MY TEST SETUP:
---<lan>--[Head Off]---<intermediate_rtr>---[Branch Off]---<lan>---
HeadOffice:
ipsec whack --name ho2bo1 --id @ho --host 10.1.6.1 --nexthop 10.1.6.2 --
client 172.16.15.0/24 --to --id @bo1 --host 10.1.5.1 --nexthop 10.1.5.2
--client 192.168.10.0/24 --psk --tunnel --authenticate --encrypt --esp
3des-md5-96
BranchOffice:
ipsec whack --name ho2bo1 --id @ho --host 10.1.6.1 --nexthop 10.1.6.2 --
client 172.16.15.0/24 --to --id @bo1 --host 10.1.5.1 --nexthop 10.1.5.2
--client 192.168.10.0/24 --psk --tunnel --authenticate --encrypt --esp
3des-md5-96
Best Regards,
Shyam.
More information about the Users
mailing list