Hi All,
We are executing a simple ping test on our device in transport mode. Test configuration and steps are as below
IP address of Host-1 => 3001::200:10ff:fe10:1180
IP address of our device => 3000::268:ebff:fe85:539f
1.
2 pair of SA's are established.
HOST1_Link1 --------------------- Our Device
--------------------> SA1-I
<-------------------- SA1-O
--------------------> SA2-I
<-------------------- SA2-O
2.
HOST1 sends " ICMP Echo Request with SA1 - I 's ESP "
Device sends " ICMP Echo Reply with SA2 - 0 's ESP.
Decide sends " ICMP Echo Request with SA 1 - 0 's ESP "
HOST1 sends " ICMP Echo Reply with SA 2 - I 's ESP "
IPsec handshake are successful. Host is sending a correct ESP request. But our device is not responding. I have attached the XFRM monitor logs and Wireshark log. Our kernel version is
Linux tron 4.9.180 #6 SMP PREEMPT Thu Jul 2 18:23:50 America 2020 aarch64 GNU/Linux.
Has any one experienced this kind of issue? Please can you share your inputs??
Thanks and Regards,
Jayalakshmi
Bhat, Jayalakshmi Manjunath <[email protected]> wrote:
> We are executing a simple ping test on our device in transport mode.
I wrote this 20 years ago. Does it help?
https://www.freeswan.org/freeswan_trees/freeswan-2.06/doc/faq.html#cantping