[Openswan Users] IPv4-in-IPv6 / IPv6-in-IPv4
Michael H. Warfield
mhw at WittsEnd.com
Thu May 14 17:56:24 EDT 2009
Seems like it is now possible with Linux kernels 2.6.21 and greater to
support IPv4-in-IPv6 tunnels and IPv6-in-IPv4 tunnels in tunnel mode.
Seems to have already been incorporated into StrongSWAN. Any plans for
this in OpenSWAN? This is the one thing for which I still keep OpenVPN
around - roadwarrior IPv6 over IPv4.
I've tried using sit tunnels over IPSec but autoconfiguring the
endpoints for the sit tunnel is a royal PITA in the roadwarrior case in
addition to adding yet another layer in the protocol stacks. I do use
layered SIT on IPSec NAT/T tunnels for some really touch cases, but
those are static endpoints were I have the IPv4 addresses already nailed
StrongSWAN claims to make reference to XFRM_STATE_AF_UNSPEC in order to
perform that trick and I don't see that in any of the OpenSWAN files.
I don't want to engage in a feature war between the three different
projects but that IPv6-in-IPv4 tunnel would be very useful.
Michael H. Warfield (AI4NB) | (770) 985-6132 | mhw at WittsEnd.com
/\/\|=mhw=|\/\/ | (678) 463-0932 | http://www.wittsend.com/mhw/
NIC whois: MHW9 | An optimist believes we live in the best of all
PGP Key: 0xDF1DD471 | possible worlds. A pessimist is sure of it!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Size: 307 bytes
Desc: This is a digitally signed message part
Url : http://lists.openswan.org/pipermail/users/attachments/20090514/c1510f35/attachment.bin
More information about the Users