Merci Benoit,
Benoit Ganne (bganne) via lists.fd.io writes:
> Hi Ray,
>
> [...]
>> create ipip tunnel src 10.0.0.2 dst 10.0.0.1
>> ipsec tunnel protect ipip1 sa-in 30 sa-out 20
>
> Looking at https://git.fd.io/vpp/tree/src/scripts/vnet/ipsec_tun_protect I
> think you are missing the table id t
Hi Ray,
[...]
> create ipip tunnel src 10.0.0.2 dst 10.0.0.1
> ipsec tunnel protect ipip1 sa-in 30 sa-out 20
Looking at https://git.fd.io/vpp/tree/src/scripts/vnet/ipsec_tun_protect I
think you are missing the table id to look after encrypt for ipip1, ie you
should do:
create ipip tunnel src 10
Folks,
I came across a funny issue with IPSEC, while trying to update the
src/scripts/vnet/ipsec script to use the new cli.
Essentially what is happening is that interface index of the ipsec
tunnel endpoint is being used as the fib index.
To illustrate the issue, you can see a version of the sc
