Hi, I've got two issues: OVS version: 2.0.0
1- A gre and an ipsec_gre tunnels between two endpoints can not coexist. Initially, an ipsec_gre tunnel doesn't work unless I set the mark manually using iptables. This has been mentioned here: https://www.mail-archive.com/[email protected]/msg08502.html https://lists.strongswan.org/pipermail/dev/2013-February/000767.html But then it breaks gre tunnel. The packet mark is changed (0 -> 1) in OVS: http://pastebin.com/tET8kP8z Q: How should I fix it? 2- ovs-vswitchd.conf.db man page stated "Each tunnel must be uniquely identified by the combination of type, options:remote_ip, options:local_ip, and options:in_key.", however in ipsec_gre tunnels implementation (ovs-monitor-ipsec, L337), the combination of remote_ip and local_ip should be unique. Q: Can there be multiple ipsec tunnels between two endpoints, and flow key decides which tunnel should be used? (by marking packets according to the key) Thanks, Aryan _______________________________________________ discuss mailing list [email protected] http://openvswitch.org/mailman/listinfo/discuss
