[Swan] vti support

Charles Wyble charles at turnsys.com
Mon May 30 16:49:32 UTC 2016

Hello again,

I have established an IPSEC tunnel between by Cisco 2811 and Ubuntu 14.04.

I'm now attempting to have VTi work.

Per https://libreswan.org/wiki/Route-based_VPN_using_VTI it requires libreswan 3.18, however only 3.17 is released. I downloaded the source from github and compiled, that gives me

root at tsys-shared-router:~# ipsec --version
Linux Libreswan v3.17-270-g40099bd-master (netkey) on 4.2.0-35-generic
root at tsys-shared-router:~#

Is VTI working? Is there anything else I need to do to enable it?

No vti interface exists (except perhaps one instantiated by the kernel?)

root at tsys-shared-router:~# ip  a |grep vti
15: ip_vti0 at NONE: <NOARP> mtu 1332 qdisc noop state DOWN group default
root at tsys-shared-router:~#
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20160530/b2b68264/attachment.html>

More information about the Swan mailing list