Re: Error while creating security association using ip xfrm command
From: Naveen BN
Date: Wed Nov 11 2009 - 03:07:18 EST
Hi All,
Problem can be solved by using the below command
ip xfrm state add src 172.16.8.36 dst 172.16.8.38 proto esp spi 0x800
mode tunnel reqid 0 replay-window 32 auth sha1
0xecf02a5cf6568556e1bdcd961c7ec3f92afd01cc enc aes
0x5c0cfa9672ce67ba545b593076dfb278 sel src 172.16.8.36 dst 172.16.8.38
proto udp dport 300
please refer http://man.he.net/man8/ip
Regards
Naveen
Ram wrote:
Directing the query to Linux kernel networking group :
_*Query :*_
*I am trying to create a security association using ip xfrm command,
but i get an error message saying
"*RTNETLINK answers: Function not implemented*" and ip xfrm state
succeeds in displaying sa written using setkey .
ip xfrm state add src 192.168.1.20 dst 192.168.1.5 proto esp spi
0x354cb04b mode tunnel reqid 16385 replay-window 32 auth hmac
0xecf02a5cf6568556e1bdcd961c7ec3f92afd01cc enc cbc
0x5c0cfa9672ce67ba545b593076dfb278 sel src 0.0.0.0/0 dst 0.0.0.0/0
ERROR message => "RTNETLINK answers: Function not implemented"
Please let me know what is the problem here .
*Timo Teräs wrote:
Naveen BN wrote:
*I am trying to create a security association using ip xfrm command,
but i get an message saying
"*RTNETLINK answers: Function not implemented*" and ip xfrm state
succeeds in displaying sa written using setkey .
ip xfrm state add src 192.168.1.20 dst 192.168.1.5 proto esp spi
0x354cb04b mode tunnel reqid 16385 replay-window 32 auth hmac
0xecf02a5cf6568556e1bdcd961c7ec3f92afd01cc enc cbc
0x5c0cfa9672ce67ba545b593076dfb278 sel src 0.0.0.0/0 dst 0.0.0.0/0
ERROR message => "RTNETLINK answers: Function not implemented" *
Please, direct "ip xfrm" and Netlink questions to Linux kernel
networking mailing list.
- Timo
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/