[Swan] Configuring IPsec for geneve tunnel
Qiuyu Xiao
qiuyu.xiao.qyx at gmail.com
Tue Sep 18 14:04:45 UTC 2018
Hi Paul,
I tested this patch with geneve and vxlan IPsec tunnels. They both
work! Thanks you so much for fixing this bug!
Thanks,
Qiuyu
On Tue, Sep 4, 2018 at 6:23 PM Paul Wouters <paul at nohats.ca> wrote:
>
> On Thu, 2 Aug 2018, Qiuyu Xiao wrote:
>
> > I tried to use LibreSwan to encrypt traffic for geneve protocol but failed.
>
> We found the issue and pushed a fix which will be in libreswan 3.26. You
> can find a patch here:
>
> https://github.com/libreswan/libreswan/commit/9d52ef1a3559d55cd7077edfabd01b14dd7e74f7
>
> It caused us to look at the wrong traffic selectors so when the
> connection found the any to single port conn it would not properly
> switch to the single to any port conn.
>
> Please let us know if this resolves all your issues to get the geneve
> protocol working.
>
> Paul
More information about the Swan
mailing list