[Openswan Users] Initiate IKE on an outbound packet
Philip Bellino
pbellino at mrv.com
Wed Oct 7 11:24:23 EDT 2009
Paul,
Using auto=route with KLIPS on my 2.6.27.21-78.2.41.fc9 hangs the entire system. I thought I saw an outstanding Openswan bug (795) on this.
We then tried it with the protostack as netlink and it didn't initiate IKE negotiations on traffic.
Does using "oe=on" in the ipsec.conf file buys us anything?
We see that whack has an option "%opportunistic". Does using this initiate IKE negotiations on traffic?
If so, do you or anyone else have a good example of the use of this option with whack?
Thanks,
Phil Bellino
> Is there a way to start the Openswan IKE negotiation based on receiving an outgoing packet instead.
On klips, auto=route does that I believe. I am not sure if that works on NETKEY at this moment.
Paul
More information about the Users
mailing list