Subject: ipv6 ipsec
To: None <tech-net@netbsd.org>
From: None <6bone@6bone.informatik.uni-leipzig.de>
List: tech-net
Date: 05/09/2005 12:01:46
hello,

i have configured a szenario with multiple road warrior's and PSK with isakmpd. 
the tunnelendpoints are ipv4 hosts, the networks inside the ipsec-tunnel are 
ipv6. when i try to establish a tunnel between rw and vpn-gate isakmpd reports 
the error:

Default pf_key_v2_write: writev (3, 0x8141500, 5) failed: Invalid argument
it seems, that the iskmpd inserts SAD rules, but no SPD rules

(the error is reported at rw and vpn-gate)
you can find the complete logfiles at:

rw http://www.ipv6.uni-leipzig.de/clog
gate http://www.ipv6.uni-leipzig.de/slog


when I try a similar configuration with ipv4-networks inside the tunnel 
everything works well.
is there any restriction in isakmpd or the netbsd kernel that forbits such a 
configuration?


testet systems:
NetBSD 2.0F / NetBSD 2.99.9 / NetBSD 3.99.3
isakmpd-20030903nb4


thank you for your efforts
Uwe