On Mon, 2011-01-03 at 10:30 +0100, Luc MAIGNAN wrote:
> Hi,
> I want to establish an IPSEC tunnel between a fedora box and a NETASQ
> router.
> The router doesn't support AH transport, just ESP.
Yeah, you don't want to use AH anyways. All that gives you is the
authentication header (AH) and n
Hi,
I want to establish an IPSEC tunnel between a fedora box and a NETASQ
router.
The router doesn't support AH transport, just ESP.
So I try to disable it by setting :
AH_PROTO=none
in the ifcfg-ipsec0 file.
but it doesn't work !
In the log file, I can see :
pfkey GETSPI succeeded: AH/T
