Hi Stuart,
you are right, and i was tired :p, i haven't seen the source was wrong
in tcpdump.
In fact, the negotiation uses WAN src ip instead of LAN src ip. I forced
src with local A.B.C.D and then, it works !
Thanks for your advice, i need to clean my eyes ^^
Have a nice day
--
Best regards,
L
On 2013/03/01 20:16, Loïc BLOT wrote:
> Thanks for the reply Stuart, but:
> - It's a test network, with an offline switch
> - only the two routers are on the switch, with the good VLAN connected
> by one LACP trunk (for each device)
> - isakmp negotation is from the expected hosts
> - the certifica
Thanks for the reply Stuart, but:
- It's a test network, with an offline switch
- only the two routers are on the switch, with the good VLAN connected
by one LACP trunk (for each device)
- isakmp negotation is from the expected hosts
- the certificate are default certificates, generated by OpenBSD
On 2013-03-01, Loïc Blot wrote:
> Hello Misc !
> I have a strange problem, and google doesn't help me.
> I want to make an IPSec+GRE tunnel with OSPF. For now, OSPF over GRE is
> perfectly working (ipv4+ipv6).
> I have a problem with IPSec, and I don't find how to resolve it.
>
> It's a fresh Open
Hello Misc !
I have a strange problem, and google doesn't help me.
I want to make an IPSec+GRE tunnel with OSPF. For now, OSPF over GRE is
perfectly working (ipv4+ipv6).
I have a problem with IPSec, and I don't find how to resolve it.
It's a fresh OpenBSD 5.2 image.
The error is the following:
at
5 matches
Mail list logo
