#28 why my racoon don't negotiate?

closed
nobody
None
5
2005-05-30
2005-05-30
Robert Hua
No

i user the 2.6.9 kernel and ipsec 0.4.b1 version

when two gateway in route mode(tunnel) ,erverting is ok

net1 ------gw1(route)------------gw2(transport)------net2

when change one gateway to transport mode , the
racoon on this gateway dont't negotiate,
i can see the spd user setkey -DP
when net2 host ping net1. the racoon don't send
negotiation packet ?
why this happen ?

Discussion

  • Aidas Kasparas

    Aidas Kasparas - 2005-05-30

    Logged In: YES
    user_id=39627

    Transport mode can be used only end-to-end connections. I.e.
    host in net2 has to negotiate SAs with from net1 *directly*.
    Therefore, it should not negotiate by design!

    If you think I did not get your problem, please explain in
    more detail.

     
  • Aidas Kasparas

    Aidas Kasparas - 2005-05-30
    • status: open --> closed
     
  • Robert Hua

    Robert Hua - 2005-06-15

    Logged In: YES
    user_id=1277783

    thank you ,i have solved this problem!

     

Log in to post a comment.