Visit Jeremy's Blog.
Go Back > Forums > Linux Forums > Linux - Software > Linux - Kernel
User Name
Linux - Kernel This forum is for all discussion relating to the Linux kernel.


  Search this Thread
Old 07-13-2010, 12:15 PM   #1
LQ Newbie
Registered: Jul 2010
Posts: 6

Rep: Reputation: 1
Disabling encryption for ipv6, i.e. 'disable_xfrm'?

I need to disable encryption (disable_xfrm) for IPV6. Looked at the /proc/sys/net/ipv6/* but did not find disable_xfrm. Googling the subject, this is controlled by 'ipv4/conf/default/disable_xfrm for IPV6! But setting ipv4/conf/default/disable_xfrm to 1 still does not disable encryption. My linux version is 2.6.21. Unfortunately, I'm stuck with using 2.6.21.
- Am I missing a patch? If so, where can I get it?
- If 2.6.21 does not support my need, which version of linux supports this?

Thanks Much!
Old 07-15-2010, 08:47 PM   #2
LQ Newbie
Registered: May 2010
Posts: 2

Rep: Reputation: 0
I am not sure you are going to get an answer on this. As to my understanding, the encryption method is built into IPv6, this is one of the major reasons it has not been deployed (officially). Too many larger companies, would lose money if it where. To disable it, means the problems that exist in the IPv4 world would then exist in the IPv6 wise and I don't know about you, but I don't want people sniffing my packets.

I think the better question to ask is, "Why do I want to disable encryption on IPv6?" and "Do I really want the protocol I use to transfer information to be insecure?" (do you really trust http and telnet? or are you using ssh? [just curiuos])

However, if you do find a way to do this, it is not going to be a common practice, and you may end up have to go to the Source Code of the TCP packet for which IPv6 is actually implemented / written on, the encryption is almost the basis of IPv6.

***The best hackers in the world, are still in diapers***
Old 07-16-2010, 07:46 AM   #3
LQ Newbie
Registered: Jul 2010
Posts: 6

Original Poster
Rep: Reputation: 1
Thanks for the response!
It is not that we are not doing the 'encryption'. We have a built-in processor which performs encryption that we like to use once 'policies & xfrm' negotiations are set up by linux. So it is an uncommon application (from linux perspective). Would you happen to know where the ipv6 encryption is being done in the kernel? It would be very helpful.
Thanks Much!


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Disabling ipv6 on SuSE 10.0 VIR3NT SUSE / openSUSE 3 05-14-2009 07:08 AM
Disabling IPv6 on Slackware 12 a good idea? [GOD]Anck Slackware 2 09-22-2007 05:50 AM
Disabling IPv6 thomaspsimon Linux - Networking 2 06-25-2007 05:36 AM
confused on disabling IPv6 arnuld Debian 5 06-13-2007 07:11 PM
disabling ipv6 felosi Debian 7 06-05-2006 11:46 PM > Forums > Linux Forums > Linux - Software > Linux - Kernel

All times are GMT -5. The time now is 07:22 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration