[Openswan Users] Encrypting Local Network: Host-to-Host connection

hiren joshi joshihirenn at gmail.com
Thu Jun 19 07:26:12 EDT 2008


I tried to encrypt the connection between two immediate peers (same
broadcast domain):

conn ab
left=a.b.c.d
right=a.b.c.e

I observed that after connection establishment, the ARP request for the peer
is sent to (00:00:00:00:00:01) instead of (ff:ff:ff:ff:ff:ff).
The remote peer doesn't reply to the request. As a result peer is declared
dead by the initiator after the specified interval.

I tried with type=%direct (as mentioned in the openswan book by Paul), but
with openswan-2.4.8, it results in error (ipsec_auto: fatal error in "htoh":
unknown type "%direct").
Then I tried with leftnexthop=%direct, but observed the same ARP behavior.

Any clue?

Thanks,
-hiren
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080619/13f34b47/attachment.html 


More information about the Users mailing list