[Openswan Users] Openswan: ip xfrm policy shows different data than /etc/ipsec.conf
Ian Brown
ianbrn at gmail.com
Thu Jan 31 08:09:59 EST 2008
Witold ,
Yes, as a rule you are right.
Host to host connection is in transport mode.
Any ideas if I can simulate tunnel mode on a local network somehow ?
(So that two machines will connect in tunnel mode with IPsec)
I can change the ipsec.conf and set IP addresses on different subnets, etc.
Regards,
Ian
2008/1/31 Witold Golab <w.golab at gtn.pl>:
> Dnia czwartek 31 stycznia 2008, Ian Brown napisał(a):
> > Hello,
> >
>
> > ...
> > ...
> > ...
> >
> > Why do wee see "mode transport" in both "tmpl" (template) lines of these
> > two policies, whereas I have "type=tunnel" in both connections in this
> > /etc/ipsec.conf
> > file ?
> I might be wrong but if you have host to host connection - it'll be always in
> transport mode (tunnel mode is for VPN through WAN).
>
>
> Best Regards
> Witold Golab
>
>
> _______________________________________________
> Users at openswan.org
> http://lists.openswan.org/mailman/listinfo/users
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>
More information about the Users
mailing list