[strongSwan] unable to install source route for IPv6
Nan Luo
harvana2000 at yahoo.com
Fri May 11 00:40:01 CEST 2012
Hello, Andreas, hello all
I am trying to bring up a IPv6 tunnel between my SeGW and a strongSwan client running on Linux. The tunnel was able to be setup however strongSwan failed to install the route for virtual endpoint IP (assigned by the SeGW). Thus I was not able to pass data over the tunnel. When I tried to ping6 over the tunnel, ping6 returns "ping: sendmsg: Network is unreachable". I wonder if you have run into this issue before or know how to fix this.
Thanks very much
Nan
The strongSwan trace and my connection configuration is as following:
strongSwan traces:
.....................
sending packet: from 1080::ac10:202[4500] to 1080::ac10:102[4500]
received packet: from 1080::ac10:102[4500] to 1080::ac10:202[4500]
parsed IKE_AUTH response 5 [ AUTH CP(ADDR6) SA TSi TSr ]
authentication of '1080::ac10:102' with EAP successful
IKE_SA ipv6_sim[4] established between 1080::ac10:202[1080::ac10:202]...1080::ac10:102[1080::ac10:102]
scheduling rekeying in 9998s
maximum IKE_SA lifetime 10538s
installing new virtual IP 1080::abcd:0:2
received netlink error: Invalid argument (22)
unable to install source route for 1080::abcd:0:2
received netlink error: Invalid argument (22)
unable to install source route for 1080::abcd:0:2
conn ipv6_sim
left=1080::ac10:202
leftsourceip=%config
leftfirewall=no
leftauth=eap
eap=sim
eap_identity=1234567
leftsubnet=1080::abcd:0:0/112
right=1080::ac10:102
rightsubnet=1172::ac10:191/112
rightauth=psk
auto=add
esp=3des-aes-sha1-md5-modp1024
ike=3des-aes-sha1-md5-modp1024
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20120510/349b8e3b/attachment.html>
More information about the Users
mailing list