Yes VXLAN works like a charm w/o IPSec enabled.
Seb
From: Qiuyu Xiao
Sent: Monday, October 8, 2018 4:33:33 PM
To: Sebastian Pitei
Cc: ovs-discuss@openvswitch.org
Subject: Re: [ovs-discuss] VXLAN over IPSec - what's wrong
Then the IPsec configuration shou
ifferent results, as I've been testing this whole
>> setup inside VirtualBox and VMware Workstation Pro.
>>
>> Thx,
>> Seb
>>
>> -Original Message-----
>> From: Sebastian Pitei
>> Sent: Sunday, October 7, 2018 8:03 PM
>> To: Qiuyu Xiao
>
Hi Qiuyu,
Yes, if I try to ping from fd::10 to fd::11 the ICMP gets through and is
encrypted.
Seb
-Original Message-
From: Qiuyu Xiao
Sent: Monday, October 8, 2018 4:01 PM
To: Sebastian Pitei
Cc: ovs-discuss@openvswitch.org
Subject: Re: [ovs-discuss] VXLAN over IPSec - what's
> Seb
>
> -Original Message-
> From: Sebastian Pitei
> Sent: Sunday, October 7, 2018 8:03 PM
> To: Qiuyu Xiao
> Cc: ovs-discuss@openvswitch.org
> Subject: RE: [ovs-discuss] VXLAN over IPSec - what's wrong
>
> Hi Qiuyu,
>
> Thanks a lot for your suggestion
ssage-
From: Sebastian Pitei
Sent: Sunday, October 7, 2018 8:03 PM
To: Qiuyu Xiao
Cc: ovs-discuss@openvswitch.org
Subject: RE: [ovs-discuss] VXLAN over IPSec - what's wrong
Hi Qiuyu,
Thanks a lot for your suggestions. In order to better troubleshoot this, let me
state my understanding of
tian Pitei
Cc: ovs-discuss@openvswitch.org
Subject: Re: [ovs-discuss] VXLAN over IPSec - what's wrong
Hi Sebastian,
If it is an IPsec configuation problem, you can check syslog to see what error
messages were put by the strongswan daemon.
There is a patchset which configures IPsec tunnel for
Hi Sebastian,
If it is an IPsec configuation problem, you can check syslog to see
what error messages were put by the strongswan daemon.
There is a patchset which configures IPsec tunnel for OVS. It should
work with VXLAN tunnel and strongswan. You can check it out in
https://github.com/qiuyuX/ov
Hi everyone,
I'm trying to build a simple OVS setup as follows:
-two OVS switches (on separate machines), both having one physical port
(enp0s10) and a virtual one (vxlan0), on the same br0 bridge.
-each br0 has a manually set IPv6 address that's being used as source and
destination for the VXLA