On 17/12/06, viq <[EMAIL PROTECTED]> wrote:
On 17/12/06, Mathieu Sauve-Frankel <[EMAIL PROTECTED]> wrote:
> On Sun, Dec 17, 2006 at 02:16:48PM +0100, viq wrote:
> > Yes, again... I am trying to set up VPN using IPSec, right now very
> > basic setup, and it doesn't work as expected.
> > Hosts being involved are keibi that acts as server, and trying to
> > connect to it laptop sentan.
>
> there's an error in ipsecctl in -current which breaks ipsecctl unless you are
> loading your rules with the verbose flag ( ie. ipsecctl -vf ipsec.conf )
>
> I found it today and am just waiting for an okay to commit the fix,
> could you try out this diff in the meantime ?
I didn't try the diff yet, only loading with -v flag... And something
funny happens. I have IPv6 working as well in my network, and with
those very basic rules I have posted, esp traffic travels over IPv4,
yet only IPv6 traffic gets encapsulated...
<snip patch>
Fun. Both boxes now are:
OpenBSD 4.0-current (GENERIC) #1278: Sun Dec 17 19:52:22 MST 2006
[EMAIL PROTECTED]:/usr/src/sys/arch/i386/compile/GENERIC
And esp runs around on IPv4, and IPv4 traffic gets nicely
encapsulated, but IPv6 doesn't get encapsulated, with the exact same
rules as posted before.
(No, I don't remember whether with that patch v6 worked)
> --
> Mathieu Sauve-Frankel
>
--
viq
--
viq
