[Openswan Users] Encrypting Local Network: Host-to-Host connection
hiren joshi
joshihirenn at gmail.com
Thu Jun 19 07:26:12 EDT 2008
I tried to encrypt the connection between two immediate peers (same
broadcast domain):
conn ab
left=a.b.c.d
right=a.b.c.e
I observed that after connection establishment, the ARP request for the peer
is sent to (00:00:00:00:00:01) instead of (ff:ff:ff:ff:ff:ff).
The remote peer doesn't reply to the request. As a result peer is declared
dead by the initiator after the specified interval.
I tried with type=%direct (as mentioned in the openswan book by Paul), but
with openswan-2.4.8, it results in error (ipsec_auto: fatal error in "htoh":
unknown type "%direct").
Then I tried with leftnexthop=%direct, but observed the same ARP behavior.
Any clue?
Thanks,
-hiren
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080619/13f34b47/attachment.html
More information about the Users
mailing list