I've installed ipsec-tools-0.6.
I've added SPD entries and corresponding SA entries for
IPSec between 2 machines.
(I can see that the SA entries are there through setkey -D)
The SAs are between 2 machines 192.168.0.1 and 192.168.0.2 (
But when I try to delete an SA using
deleteall -4 192.168.0.1 192.168.0.2 ah;
setkey returns an error
However, if I delete the SA like below it works (basically,
if I give the SPI)
delete -4 192.168.0.1 192.168.0.2 ah 1234;
(here 1234 is the SPI).
I am using Linux kernel version 2.6.11.
Can anybody help me with this. What am I missing?
If it does'nt work, how can I delete an SA entry(ies)
knowing only the
Source and destination addresses?
Get latest updates about Open Source Projects, Conferences and News.