Paul Moore wrote: > Joy Latten wrote: > >>Klaus requested some basic steps and info for >>configuring labeled ipsec. I started and came up with >>the following which can later be used to assist those >>new to labeled ipsec and wishing to understand and use it. >>This is by no means complete. I will fill in and improve >>in time. Let me know if anything is incorrect or can be improved. >> >>Currently, I am unable to successfully configure and run labeled >>ipsec in enforcing mode on lspp 55 kernel. I'm working on ironing out >>policy complaints so we can run in enforcing mode. Has anyone else >>tried this? > > > Thanks for sending this out. > > Based on your instructions I'm trying to setup a simple, manually keyed > labeled > IPsec connection between two machines running the lspp.55 kernel; both are > using > the MLS policy in permissive mode. Unfortunately, I can't seem to get it to > work; I assume I am doing something wrong but it is not obvious to me ...
Well, nevermind that email ... I was sending traffic using the wrong context and since I was not using racoon it was dropped. -- paul moore linux security @ hp -- redhat-lspp mailing list [email protected] https://www.redhat.com/mailman/listinfo/redhat-lspp
