[strongSwan] GRE over IPsec in Load-Tester Scenario
Martin Willi
martin at strongswan.org
Mon Apr 23 10:23:45 CEST 2012
Hi Mohan,
> I am trying to establish 1000 GRE over IPsec Tunnels between a Linux
> Machine and Cisco Router using the Load-Tester Plugin. I need help on
> how to configure strongswan.conf to set 'leftprotoport=47' (GRE).
Please be aware that the load-tester plugin currently works for IKEv2
connections only, not sure if your Cisco box can handle this protocol.
If IKEv2 is used, traffic selector narrowing on the responder probably
should take care of limiting the tunnel GRE, if required.
There currently is no protocol/port option in load-tester. You can,
however, change the sources in [1] to create both the traffic selectors
for protocol 47 only, something like:
> ts = traffic_selector_create_dynamic(47, 0, 65535);
Regards
Martin
[1]http://git.strongswan.org/?p=strongswan.git;a=blob;f=src/libcharon/plugins/load_tester/load_tester_config.c;h=6bc6f91e447a33137e0bfe64ce39f2a0215500cc;hb=HEAD#l275
More information about the Users
mailing list