Hi Paul,
I tested this patch with geneve and vxlan IPsec tunnels. They both
work! Thanks you so much for fixing this bug!
Thanks,
Qiuyu
On Tue, Sep 4, 2018 at 6:23 PM Paul Wouters wrote:
>
> On Thu, 2 Aug 2018, Qiuyu Xiao wrote:
>
> > I tried to use LibreSwan to encrypt traffic for geneve
On Thu, 2 Aug 2018, Qiuyu Xiao wrote:
I tried to use LibreSwan to encrypt traffic for geneve protocol but failed.
We found the issue and pushed a fix which will be in libreswan 3.26. You
can find a patch here:
Thanks!
-Qiuyu
> On Aug 2, 2018, at 8:19 PM, Paul Wouters wrote:
>
> On Thu, 2 Aug 2018, Qiuyu Xiao wrote:
>
I tried to use LibreSwan to encrypt traffic for geneve protocol but failed.
>
> I reproduced the bug and added a (failing) test case for this:
>
> ikev2-child-dual-asym-01
On Thu, 2 Aug 2018, Qiuyu Xiao wrote:
I tried to use LibreSwan to encrypt traffic for geneve protocol but failed.
I reproduced the bug and added a (failing) test case for this:
ikev2-child-dual-asym-01
I'll let you know when we have fixed this bug. currently the two
connections are
On Thu, 2 Aug 2018, Qiuyu Xiao wrote:
I tried to use LibreSwan to encrypt traffic for geneve protocol but failed.
Below is my configuration:
In host 1 /etc/ipsec.conf:
config setup
uniqueids=yes
conn %default
keyingtries=%forever
type=transport
auto=route
Hi everyone,
I tried to use LibreSwan to encrypt traffic for geneve protocol but failed.
Below is my configuration:
In host 1 /etc/ipsec.conf:
config setup
uniqueids=yes
conn %default
keyingtries=%forever
type=transport
auto=route
ike=aes_gcm256-sha2_256
esp=aes_gcm256