LinuxQuestions.org
Download your favorite Linux distribution at LQ ISO.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices


Reply
  Search this Thread
Old 03-21-2014, 03:49 AM   #1
Sony Arpita
LQ Newbie
 
Registered: Mar 2014
Posts: 2

Rep: Reputation: Disabled
Unable to establish IPv6 TCP connection with IPSec


Hi All,

setkey.conf file:
-----------------
add 1000::12 1000::13 esp 0x201 -E aes-cbc 0xf6ddb555acfd9d77b03ea3843f265325f6ddb555acfd9d77b03ea3843f265325 -A hmac-sha512 0x96ceabe0536babcdefab96358c90783bbfa3d7b18c90783bbfa3d7b1bfa3d7b196358c90783bbfa3d7b196ceabe0536b96 358c90783bbfa3d7b196ceabe0536b;
add 1000::13 1000::12 esp 0x301 -E aes-cbc 0xf6ddb555adfd9d77b03ea3843f265325f6ddb555acfd9d77b03ea3843f265325 -A hmac-sha512 0x96ceabe0536babcdefab96358c90783bbfa3d7b18c90783bbfa3d7b1bfa3d7b196358c90783bbfa3d7b196ceabe0536b96 358c90783bbfa3d7b196ceabe0536c;

spdadd 1000::12 1000::13 any -P out ipsec
esp/transport//require;

spdadd 1000::13 1000::12 any -P in ipsec
esp/transport//require;

With the above configuration, I am unable to establish TCP connections even after loading ah6 and esp6 driver modules:
# insmod ah6.ko
# insmod esp6.ko

Without IPSec, IPv6 TCP connections establish without issues.

Thanks.
 
Old 03-25-2014, 11:23 AM   #2
estabroo
Senior Member
 
Registered: Jun 2008
Distribution: debian, ubuntu, sidux
Posts: 1,117
Blog Entries: 2

Rep: Reputation: 113Reputation: 113
Does the other side have ipsec turned on as well? If it doesn't then, since you've set the level to 'require', it'll fail the connection. You could set the level to 'use' if you need to connect to the other machine before it's ipsec is setup.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Can't Establish Connection L2TP/IPSec VPN nasvi Linux - Security 0 02-21-2014 05:44 PM
How could I establish an connection with a ipv6 link-local address? chenroke Linux - Networking 1 07-03-2012 03:19 PM
To establish TCP/IP connection over UART vinaybms Linux - Networking 1 03-07-2005 11:41 AM


All times are GMT -5. The time now is 10:43 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration