[ovs-discuss] GRE over IPsec
sonia verma
soniaverma9727 at gmail.com
Wed Feb 12 19:27:23 UTC 2014
Thanks Gurucharan and Ansis for the quick reply.
YES I did installed the IPsec daemon from the debian package for my system
but I installed the ovs-vswitchd
daemon from the source code for my system.
Does this mean that either I have to install the openvswitch and its ipsec
daemon from debian package or from their respective source codes?
Also , I will make sure that the ovs-monitor-ipsec pid file is in the ovs
run dir.
One more thing I want to clarify is that does the openvswitch ipsec package
will take care of the ipsec functionality in openvswitch automatically or
do I have to make some configuration for this in the racoon daemon?
Please help me regargding this.I will let you know whether this worked or
not.
Thanks
On Wed, Feb 12, 2014 at 10:42 PM, Ansis Atteka <aatteka at vmware.com> wrote:
>
> ----- Original Message -----
> From: "sonia verma" gmail.com>
> To: discuss at openvswitch.org
> Sent: Wednesday, February 12, 2014 3:28:04 AM
> Subject: [ovs-discuss] GRE over IPsec
>
> Hi All,
>
> I have been able to implement GRE tunneling on OpenvSwitch and now I want
> to implement GRE over IPsec on OpenvSwitch.
> For this, I have installed the OpenvSwitch-IPsec package on my system and
> I'm running the ovs-monitor-ipsec demon.
>
> But when I'm using the following command:
> ovs-vsctl add-port br0 gre0 -- set interface gre0 type=ipsec_gre
> options:remote_ip=10.10.10.2 .
> The ipsec_gre interface is not getting shown at the kernel level.
> I checked it using the following command:
> ovs-dpctl show br0
>
> When I see the OpenvSwitch logs,it is giving following error:
>
> 2014-02-12T11:04:38Z|00010|netdev_vport|ERR|gre0: IPsec requires the
> ovs-monitor-ipsec daemon
> 2014-02-12T11:04:38Z|00011|bridge|WARN|could not configure network device
> gre0 (Invalid argument)
>
> [Ansis]: Make sure that ovs-monitor-ipsec.pid file is in the ovs run
> directory (just like all other ovs pid files).
>
> I haven't been able to figure why this error is coming , as the demon is
> running in the background.
> Also I didn't found found any relevant document related to GRE over IPsec
> which will show how the openvswitch-ipsec demon will commiunicate with
> racoon in order to implement ipsec functionality on OpenvSwitch with the
> configuration required in order to implement this.
>
> How should I configure racoon to implement IPsec functionality?
> Do I need to do some more configuration regarding ipsec on openvswitch?
>
> Please help me regarding this issue.Any help would be appreciated.
>
> Thanks
>
>
>
> _______________________________________________
> discuss mailing list
> discuss at openvswitch.org
>
> https://urldefense.proofpoint.com/v1/url?u=http://openvswitch.org/mailman/listinfo/discuss&k=oIvRg1%2BdGAgOoM1BIlLLqw%3D%3D%0A&r=%2BXk50J8yLqbRhlVkuC%2BJEmVDkOTsHuSfu5t%2FO7oEwWU%3D%0A&m=rq7%2B0leIjGyTFuBcuv6Ke3fmaNeGmTLpmxFfwo9mHfU%3D%0A&s=97fe6496618575e64a00a40955541585c2313eb887ca1b136c6da693a5201783
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://openvswitch.org/pipermail/discuss/attachments/20140213/3b8ee028/attachment.htm>
More information about the discuss
mailing list