[Openswan Users] Ping fail after flushing SPD/SAD
Paul Wouters
paul at nohats.ca
Thu Feb 2 10:07:50 EST 2012
On Thu, 2 Feb 2012, satpal parmar wrote:
> I am trying to make ping work btn two boxes running IPSec. I am using
> manual keying.
Manual keying is like drilling for oil to fill up your car. Don't do it
:)
> I am facing strange problem. Ping works without IPsec.
> Then I apply setkey.config. Ping fails due to some hw/driver/error. I
> flush the config and try ping again. But now ping is not working . I
> have to reboot machine to make it work again.
If you do things outside of an IKE daemon, you can probably use:
with NETKEY:
ip xfrm policy flush
ip xfrm state flush
with KLIPS:
ipsec eroute --clear
Paul
More information about the Users
mailing list