Bug 138175
Summary: | host-to-host IPsec configuration unusable | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Ulrich Drepper <drepper> |
Component: | system-config-network | Assignee: | Harald Hoyer <harald> |
Status: | CLOSED RAWHIDE | QA Contact: | |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | rawhide | ||
Target Milestone: | --- | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | Bug Fix | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2006-05-19 11:00:32 UTC | Type: | --- |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Ulrich Drepper
2004-11-05 09:58:15 UTC
I also ran into this problem and agree with Ulrich's summary. Though it looks to me like the problem is in redhat-config-network-tui-1.2.63-1. You can fix the connection by manually editing one of the generated ifcfg- files and swapping the SPI_*_IN with SPI_*_OUT. But redhat-config-network is eager to overwrite that file, so it's a fairly fragile workaround. One possibly workable automatic solution is to compare the local/remote IP addresses in redhat-config-network. If local < remote then swap the IN/OUT in the ifcfg file, otherwise don't. Doesn't deal with the case where local=remote, which one might conceivably want to use for testing purposes or something, but that's likely to be rare. |