[Swan-dev] What does "missing v2CP reply" mean?
Paul Wouters
paul at nohats.ca
Tue Feb 27 17:40:37 EET 2024
On Tue, 27 Feb 2024, Brady Johnson via Swan-dev wrote:
> We tried several changes to the client nmstate configuration. Setting "ipv4: dhcp: false" caused a configuration error in nmstate.
> We have created a bug for that and the nmstate team is working on it.
> Then, we tried with the same client nmstate configuration, but added "leftmodecfgclient: false" and this allowed us to establish the
> tunnel.
>
> So, apparently, the "ipv4: dhcp: true" nmstate configuration causes the client to request IP addresses and DNS. And setting
> "leftmodecfgclient: false" overrides that in the nmstate configuration.
Note that for libreswan 5.0, the client should use something like:
leftsubnet=0.0.0.0/0,::/0
And the server should use something like:
rightaddresspool=100.64.13.0/24,2a03:6000:1005::/97
and it will hand out both v4 and v6 addresses on the same single IPsec
SA.
Paul
More information about the Swan-dev
mailing list