On Thu, 24 Aug 2023, Heting Wang wrote:
/etc/ipsec.conf
conn internet
ikev2=yes
authby=secret
left=66.42.35.157
[email protected]
leftsubnet=::/0
right=%any
rightaddresspool=2001:19f0:7001:4e7d:abcd:0:0:0/80
modecfgdns=2001:4860:4860::8888
narrowing=yes
fragmentation=yes
encapsulation=yes
auto=add
ipsec auto --add internet
003 "internet": failed to add connection: host protocol IPv4 conflicts with
client protocol IPv6
It works for me on git head:
root@fedora ipsec.d]# ipsec auto --add internet
WARNING: ipsec auto has been deprecated
005 "internet": ikev2=yes has been replaced by keyexchange=ikev2
002 "internet": added IKEv2 connection
ipsec status shows:
000 "internet": ::/0===192.168.5.166[@ipsec.imlibra.me,MS+S=C]...%any[+MC+S=C];
unrouted; eroute owner: #0
000 "internet": oriented; my_ip=unset; their_ip=unset;
000 "internet": my_updown=ipsec _updown;
000 "internet": xauth us:none, xauth them:none, my_username=[any]; their_user
name=[any]
000 "internet": our auth:secret, their auth:secret, our autheap:none, their au
theap:none;
000 "internet": modecfg info: us:server, them:client, modecfg policy:push, dns
:2001:4860:4860::8888, domains:unset, cat:unset;
Which version are you using?
Paul
_______________________________________________
Swan mailing list
[email protected]
https://lists.libreswan.org/mailman/listinfo/swan
