[Swan] Libreswan sending reset to syn when using TCP encaps
Matthew Winnett
mswinnett at gmail.com
Wed Sep 13 19:08:15 EEST 2023
I am trying to setup an IPsec TCP connection between a pair of ubuntu
libreswan 4.12 installations. The client sends syn which is received and
reset is returned. Ingress IPs & ports are correct on the syn. My server
.conf file is
config setup
protostack=netkey
listen-tcp=yes
logfile=/var/log/pluto.log
plutodebug=all
listen=201.144.66.135
conn mytunnel
left=187.161.196.93
right=201.144.66.135
rightsourceip=201.144.66.135
rightikeport=4500
authby=secret
# use auto=start when done testing the tunnel
auto=add
enable-tcp=yes
tcp-remoteport=4500
When I check "sudo netstat -tapn", there is no port 4500 listener.
Any ideas ? Thanks ...
Matthew
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20230913/1a1151e8/attachment.htm>
More information about the Swan
mailing list