我正在使用racoon工具和ipsec-tools,并且能够在运行模式下使用IPSEC连接两个设备。 但是,我做了IPv4地址,当我将它们更改为IPV6地址时,它不起作用。
有人知道IPv4和IPv6的configuration是否有区别吗?
谢谢
组态:
#racoon.conf log notify; path certificate "/etc/racoon/certs"; remote anonymous { exchange_mode main,base,aggressive; verify_cert on; my_identifier asn1dn; #my_identifier fqdn; certificate_type x509 "cert.pem" "key.pem"; ca_type x509 "cacert.pem"; lifetime time 24 hour ; proposal { encryption_algorithm 3des; hash_algorithm sha1; authentication_method rsasig; dh_group 2; } } sainfo anonymous { pfs_group 2; lifetime time 12 hour ; encryption_algorithm 3des, cast128, blowfish 448, des, rijndael ; authentication_algorithm hmac_sha1, hmac_md5; compression_algorithm deflate; } 组态:
#ipsec-tools.conf flush; spdflush; spdadd 192.168.1.1 192.168.1.2 any -P out ipsec esp/transport//require ah/transport//require; spdadd 192.168.1.2 192.168.1.1 any -P in ipsec esp/transport//require ah/transport//require; spdadd 2002:1def::192.168.1.1 2002:1def::192.168.1.2 any -P out ipsec esp/transport//require ah/transport//require; spdadd 2002:1def::192.168.1.2 2002:1def::192.168.1.1 any -P in ipsec esp/transport//require ah/transport//require;