[support] Problem in using racoon in the live CD
Sebastien Decugis
sdecugis at hongo.wide.ad.jp
Mon Apr 28 10:01:55 JST 2008
Hello,
NEPL is supposed to work with setkey or racoon2. Basically, NEPL will
install the SPD rules in the kernel; then when the first packet matching
a rule is sent (i.e. a BU) the kernel seeks for a SA for this SPD entry.
If racoon2 is running, it receives an ACQUIRE message and negotiates the
SA parameters with the remote host. Otherwise if you have set the SA
manually with setkey, it must contain the correct parameters so that the
kernel can use it.
You may find useful to dump the SPD entries (with setkey or ip commands)
to check what is wrong with the SA you set up.
Hope this helps,
Sebastien.
liu jianwei a écrit :
>
> Does NEPL support setkey or racoon2 to realize the IPsec protection? I
> have tried setkey
>
> successfully on host mobility using setkey, however, it does not work
> in the NEPL.
>
> ------------------------------------------------------------------------
>
> _______________________________________________
> Support mailing list
> Support at ml.nautilus6.org
> http://ml.nautilus6.org/mailman/listinfo/support
>
More information about the Support
mailing list