#19 failed to configure v4-in-v6 spd

setkey
closed
nobody
5
2009-01-16
2005-08-17
Wing Ko
No

I have been trying to configure an v4-in-v6 IPsec
tunnel without much success. spdadd complained about
invalid argument. The commands I entered were:

setkey -c << EOF
flush;
spdflush;

spdadd 10.252.1.0/30 0.0.0.0/0 any -P out ipsec
esp/tunnel/3001::2-3001::1/require;
spdadd 0.0.0.0/0 10.252.1.0/30 any -P in ipsec
esp/tunnel/3001::1-3001::2/require;
EOF

I tried racoonctl as well. But it didn't accept v6
address.

# racoonctl vc 3001::1
hostname nor servname provided, or not known:
3001::2/(null)
racoonctl: kmpstat: Unknown error: 0
# ping6 3001::1
PING6(56=40+8+8 bytes) 3001::2 --> 3001::1
16 bytes from 3001::1, icmp_seq=0 hlim=64 time=0.426 ms
16 bytes from 3001::1, icmp_seq=1 hlim=64 time=0.270 ms
^C
--- 3001::1 ping6 statistics ---
2 packets transmitted, 2 packets received, 0.0% packet loss
round-trip min/avg/max/std-dev = 0.270/0.348/0.426/0.078 ms

#

Any help/ suggestion is greatly appreciated. Thanks.

Wing

Discussion

  • Timo Teras

    Timo Teras - 2009-01-16
    • status: open --> closed
     
  • Timo Teras

    Timo Teras - 2009-01-16

    Closing all sourceforge.net bugs. If this issue has not been cared for please submit a new bug report to https://trac.ipsec-tools.net/ issue tracker. Thank you.

     

Log in to post a comment.