From: Kaustubh.Kumbhalkar_at_lntinfotech.com
Date: Mon Dec 09 2002 - 18:38:37 CET
hi
i was trying to create SA 's between two ipsec machines A & B having
following ipv6 addresses
A B
--- -----
3ffe::1 3ffe::1
3ffe::2 3ffe::2
i require SA's between all the combinations of addresses between the two
machines.
for e.g
Security association at A
--------------------------
SA1 src addr = 3ffe::1 dst addr = 3ffe::1
SA2 src addr = 3ffe::1 dst addr = 3ffe::2
SA3 src addr = 3ffe::2 dst addr = 3ffe::1
SA4 src addr = 3ffe::2 dst addr = 3ffe::2
Security association at B
--------------------------
SA1 src addr = 3ffe::1 dst addr = 3ffe::1
SA2 src addr = 3ffe::1 dst addr = 3ffe::2
SA3 src addr = 3ffe::2 dst addr = 3ffe::1
SA4 src addr = 3ffe::2 dst addr = 3ffe::2
but i can only create SA1 and SA4, or a tunnel mode SA between the same src
and destinations(in which case it rekeys the SA's created earlier for
transport mode). if i try to create any other SA it gives me the message
-internal error ,the route is already in use.
why does this happen when the eroute table has both the source and
destination addresses,and how can i over come this problem.
iam desperately in need of having SA;s with all address combinations. can
anyone pls help.
thanks and regards
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Tue Dec 10 2002 - 05:21:07 CET