OpenWrt Forum Archive

Topic: IPsec Tunnel(IPV6 address ends points) Fails If Client is IPV6

The content of this topic has been archived on 6 Apr 2018. There are no obvious gaps in this topic, but there may still be some posts missing at the end.

Post #1
socrates
23 Nov 2006, 13:48

Hi

I am using Whiterussian RC5 on a WRT54G LinkSys, to establish an IPSec (Openswan) tunnel using IPV6 addresses as end points (by specifying ipv6, in ipsec.conf).
I further specify (using tunnelipv6 in ipsec.conf) that the client traffic  should be interpreted as using IPV6 addresses.

The problem:
When I start up IPSec I get: "pfkey write() of SADB_X_ADDFLOW message 5 for flow %trap failed. Errno 123: Protocol family not supported" and the tunnel is never established.

When I change tunnelipv6 to tunnelipv4 (and also change the client adrresses accordingly), then the IPSec tunnel is established.

The Question:
Is that the case that the kernel does not support IPV6 traffic over IPSec tunnel with IPV6 end-points?


Will appreciate your comment;

Regards;
Socrates

Post #2
florian_
23 Nov 2006, 14:16

I wonder if ipv6 should not be enabled at configuration time, will investigate. Does the problem also appear with whiterussian rc6 ?

Post #3
socrates
23 Nov 2006, 14:35

Hi floran_

I have no used RC6 yet.

Thanks.

Post #4
socrates
24 Nov 2006, 09:08

Well I've just uploaded Whirerussian RC6 and I get the same problem

The discussion might have continued from here.