Re: IPsec manual keying: Question on Interoperability

To: rsg <ranil.santhish%gmail.com@localhost>
Subject: Re: IPsec manual keying: Question on Interoperability
From: Matthias Scheler <tron%zhadum.org.uk@localhost>
Date: Tue, 15 Apr 2008 16:25:01 +0100

On Tue, Apr 15, 2008 at 04:02:24PM +0200, rsg wrote:
> I have tried to ping from Network A to B and vice versa. But I see no
> "echo-reply" meaning that only originated SA is there but nothing in
> return.

Please try to enable IPSec debugging on the NetBSD system with
"sysctl -w net.inet.ipsec.debug=1" and try to ping the remote end
afterwards. You should get kernel messages telling you what is
going wrong.

> When I tried SETKEY with on 2.6.X it works without any
> trouble(needless to say)

What do you mean by 2.6.X? Linux kernel 2.6.x?

        Kind regards

-- 
Matthias Scheler                                  http://zhadum.org.uk/

References:
- IPsec manual keying: Question on Interoperability
  - From: rsg
- Re: IPsec manual keying: Question on Interoperability
  - From: Matthias Scheler
- Re: IPsec manual keying: Question on Interoperability
  - From: rsg

Prev by Date: Re: IPsec manual keying: Question on Interoperability
Next by Date: Re: new ACPi in today's i386 kernel says "unknown power type: 20" on Asus PSCHSR-A
Previous by Thread: Re: IPsec manual keying: Question on Interoperability
Next by Thread: Re: IPsec manual keying: Question on Interoperability
Indexes:

Home | Main Index | Thread Index | Old Index