[Openswan Users] Openswan with L2TP/IPsec

Paul Wouters paul at xelerance.com
Fri Dec 17 14:21:19 EST 2010

On Fri, 17 Dec 2010, Kevin Wilson wrote:

> I tried to test a simple scenario of Openswan with L2TP/IPsec (of the
> openl2tp project) in a lab.

> 	protostack="netkey"

> I expected the traffic from ., to to be ESP
> encrypted, as a result
> of using Openswan with the /etc/ipsec.conf above, but sniffing
> with wireshark shows it is not. Any idea why ?

You know netkey has limitations with tcpdump? You can not sniff outgoing
encrypted packets. So verify on both ends that you see incoming crypted


More information about the Users mailing list