[Openswan Users] IPv6 on netkey stack
Ozai
ozai.tien at gmail.com
Fri Jul 13 07:22:49 EDT 2012
Dear Sirs,
I can setup the ipv6 tunnel successfully.But I try to ping between
peer-to-peer.The traffic did not seem to pass through this tunnel.
Does anyone have an idea on this question?thank's.
Here's my configuration looks like:
Best Regards,
Ozai
# cat ipsec.conf
config setup
nat_traversal=no
oe=off
protostack=netkey
interfaces=%defaultroute
conn t1
left=2000:db98:1000:0:2e03:699e:e58:8716
leftsubnet=2002:7788:a0e9:6f02::/64
right=2000:db98:1000:0:7eaf:95f5:b33c:b61e
rightsubnet=2002:7788:a0e9:1fbb::/64
connaddrfamily=ipv6
pfs=yes
keyexchange=ike
ike=3des-md5;modp1024
salifetime=480m
phase2=esp
phase2alg=3des-hmac_md5
ikelifetime=60m
dpdaction=restart
dpddelay=180
dpdtimeout=5
type=tunnel
authby=secret
auto=add
# cat ipsec.secrets
2000:db98:1000:0:2e03:699e:e58:8716 2000:db98:1000:0:7eaf:95f5:b33c:b61e :
PSK "123"
#
More information about the Users
mailing list