On 25.10.2013, at 12:08, Peter J. Philipp <p...@centroid.eu> wrote: > I've been trying to set up a second gif tunnel that's encrypted with > ipsec (iked for key management), but I'm stuck on an error with iked. > Here is what I see and have: > > # route -T 1 exec iked -f /etc/iked.conf2 > # Oct 25 17:59:44 uranus iked[32297]: pfkey_reply: message: Network is > unreachable > Oct 25 17:59:44 uranus iked[32297]: fatal: pfkey_init: failed to block > IPv6 traffic: Network is unreachable > Oct 25 17:59:44 uranus iked[21552]: ikev1 exiting >
Can you try to run it with the command line option “-6" to disable the IPv6 filter? Reyk > > # netstat -nrfinet -T1 > Routing tables > > Internet: > Destination Gateway Flags Refs Use Mtu Prio > Iface > 127/8 127.0.0.1 UGRS 0 0 33196 8 > lo1 > 127.0.0.1 127.0.0.1 UH 1 0 33196 4 > lo1 > 192.168.178/24 link#11 UC 2 0 - 4 > urtwn0 > 192.168.178.1 24:65:11:b8:ed:5e UHLc 0 3 - 4 > urtwn0 > 192.168.178.64 00:00:24:d0:1e:a4 UHLc 0 568 - 4 > urtwn0 > > # pfctl -srules |grep rdomain > pass out on rdomain 1 all flags S/SA > pass in on rdomain 1 all flags S/SA > > Can anyone spot what I'm doing wrong? > > This is OpenBSD version 5.3 (still waiting for 5.4 to arrive in mail). > > -peter