Hi Niccolò,
# bad subnet: leftsubnet=a:b:c:0300::/56,1.2.3.4/28 [non-ipv6 address
may not contain `:']
bad argument value in conn 'linode-linuxsystems'
### 1 parsing error (0 fatal) ###
while if I add the ipv4 subnet first I get not errors but it doesn't
tunnel the traffic toward
Since a get an error I just wanted to know if it was possible to mix v4
and v6 subnet at all.
Supporting the fact it doesn't work is very easy: it doesn't create any
ip xfrm policy entry for the v4 subnet.
Server A ipsec.conf:
conn %default
mobike=no
pfs=yes
Hi Niccolò,
Thanks for the config.
conn A-B
...
leftsubnet=::/0
...
rightsubnet=1.2.3.32/28,a:b:c:0300::/56
That's not gonna work, as you have only an IPv6 subnet configured in
leftsubnet. Policies in the kernel are installed for the combination of
Oh I just wanted to encrypt 5.5.5.5 --- 1.2.3.32/28 and I thought it
wasn't necessary to specify 5.5.5.5 in leftsubnet since it was already
in the leftip. It does work now, thanks for the help.
Cheers,
Niccolò
___
Users mailing list
kernel: linux-3.1.5
IPsec: strongswan-4.6.2
Date: 20120310-1955
ls: cannot access /home/xrats/strongswan-testing/testing/tests/mobike: No such
file or directory
Passed: 0
Failed: 0
Copying test results to winnetou..ssh: connect to host 192.168.0.1 port 22: No
route to host
ssh
Hi, I was trying to config my vpn using certs by I gave up for while.
In my test enviroment I change the config to PSK and did work.
But, in my test, the interface external has the external IP, and there is
no problem.
For my project, I need to do these machines conecting behind a NAT, - there
is