|
|
| Applications |
| Mailing Lists |
| Miscellaneous |
| Operating Systems |
| Programming |
Re: linux-ipsec: Latest IPsec and connecting two IP networks.... :-(
Date: Wed Sep 02 1998 - 08:05:54 EDT
Henry Spencer wrote:
>
> > Is there any reason why the Aug30 IPsec would be "crashing" the
It may be new but its something I'll be keeping my eye on at the moment....
I have a fairly standard Red Hat v5.1 box acting as a firewall but running the wu-ftp server that comes provided. The machine has either a 2.0.35 kernel with no IPsec code or an IPsec'd 2.0.35 kernel. I ftp from a remote host into the machine and log in successfully using a standard account. I cd to /usr/local/lib/ipsec, select "bin" and then "get spi".
If I use the IPsec'd kernel: I get about 2kB transferred before all Internet activity on the eth0 interface dies. (eth0 is the Internet / external interface).
If I use the standard unmodified kernel: The file downloads and there is no eth0 death.
These results I haven't double checked, but .... it certainly looked like this was the case.... Any ideas? I **think** this may happen even with ipip and ipsec as _un_-loaded modules (although I'm too tired to be sure of this either). Certainly it happened with no spi or eroute entries.
Its really important that I get this stable. This whole exercise has for my company been a "test case" of Linux stability and I don't want people to start worrying........
Aug30 IPsec is running with that SPI precedence bug fixed right now. This e-mail is coming through the firewall in question. I've disabled ftpd and will see how it goes.
Thanks. I hope this feedback helps!! :-)
David S..
>
> >I found the bug mentioned below BTW. :-)
Received on Wed Sep 2 10:50:58 1998
This archive was generated by hypermail 2.1.8 : Wed Aug 23 2006 - 12:59:26 EDT
|
Contact Us Legal Notices Order Services Online Pantek Home Privacy Policy IT news Site Map Pantek Library |