[Openswan Users] Openswan with L2TP/IPsec
Paul Wouters
paul at xelerance.com
Fri Dec 17 14:21:19 EST 2010
On Fri, 17 Dec 2010, Kevin Wilson wrote:
> I tried to test a simple scenario of Openswan with L2TP/IPsec (of the
> openl2tp project) in a lab.
> protostack="netkey"
> I expected the traffic from .192.168.0.10, to 192.168.0.20 to be ESP
> encrypted, as a result
> of using Openswan with the /etc/ipsec.conf above, but sniffing
> with wireshark shows it is not. Any idea why ?
You know netkey has limitations with tcpdump? You can not sniff outgoing
encrypted packets. So verify on both ends that you see incoming crypted
packets.
Paul
More information about the Users
mailing list