[Swan] IPv6 over IPv4 problem
Paul Wouters
paul at nohats.ca
Mon Aug 28 22:10:43 EEST 2023
On Thu, 24 Aug 2023, Heting Wang wrote:
> /etc/ipsec.conf
>
> conn internet
> ikev2=yes
> authby=secret
> left=66.42.35.157
> leftid=@ipsec.imlibra.me
> leftsubnet=::/0
> right=%any
> rightaddresspool=2001:19f0:7001:4e7d:abcd:0:0:0/80
> modecfgdns=2001:4860:4860::8888
> narrowing=yes
> fragmentation=yes
> encapsulation=yes
> auto=add
>
> ipsec auto --add internet
>
> 003 "internet": failed to add connection: host protocol IPv4 conflicts with client protocol IPv6
It works for me on git head:
root at fedora ipsec.d]# ipsec auto --add internet
WARNING: ipsec auto has been deprecated
005 "internet": ikev2=yes has been replaced by keyexchange=ikev2
002 "internet": added IKEv2 connection
ipsec status shows:
000 "internet": ::/0===192.168.5.166[@ipsec.imlibra.me,MS+S=C]...%any[+MC+S=C];
unrouted; eroute owner: #0
000 "internet": oriented; my_ip=unset; their_ip=unset;
000 "internet": my_updown=ipsec _updown;
000 "internet": xauth us:none, xauth them:none, my_username=[any]; their_user
name=[any]
000 "internet": our auth:secret, their auth:secret, our autheap:none, their au
theap:none;
000 "internet": modecfg info: us:server, them:client, modecfg policy:push, dns
:2001:4860:4860::8888, domains:unset, cat:unset;
Which version are you using?
Paul
More information about the Swan
mailing list