[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ipsec] maually keyed sa and anti-replay enabled

To: ipsec@xxxxxxxx
Subject: [ipsec] maually keyed sa and anti-replay enabled
From: "Younès MELLAL" <younes0@xxxxxxxxx>
Date: Tue, 31 Oct 2006 16:04:08 +0100
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:sender:to:subject:mime-version:content-type:x-google-sender-auth; b=f9dZndtkqWm8VWA4XOLxuZ8Alg/MEh/kNKzh3AUN/jCIWQEdMpz9TaQYDXTfZuANBvyssWUemJ2a7REBFYmDeWIpwQGYHr2PNBf2/8nTIjOMbqBbekocPB0D8Wy+RwO5aeKD7bQjSZ2Q7WVBaBC0Kt38fYT15hs9bh37scgIGVA=
List-help: <mailto:ipsec-request@ietf.org?subject=help>
List-id: IP Security <ipsec.ietf.org>
List-post: <mailto:ipsec@ietf.org>
List-subscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=subscribe>
List-unsubscribe: <https://www1.ietf.org/mailman/listinfo/ipsec>, <mailto:ipsec-request@ietf.org?subject=unsubscribe>
Sender: owner-ietf-ipsec@xxxxxxxxxxxxx

Hello everyone,
is it possible to enable anti-replay checking with SAs keyed manually? I know that it's useless but I wanna do this just fort test purposes. I've tried this SA :
add fe80::acac:acff:feaa:aa11 fe80::209:5bff:fe0a:b30 esp 0x200 -r 6400 -m tunnel -E des-cbc "integrit" -A hmac-md5 "authentication!!"; but it's not working.
thank you in advance.
Younes

_______________________________________________
Ipsec mailing list
Ipsec@xxxxxxxx
https://www1.ietf.org/mailman/listinfo/ipsec

Follow-Ups:
- Re: [ipsec] maually keyed sa and anti-replay enabled
  - From: Steven M. Bellovin

Prev by Date: Anatrim will change your life
Next by Date: after. ongoing areas amp
Previous by thread: Careers Site Map
Next by thread: Re: [ipsec] maually keyed sa and anti-replay enabled
Index(es):
- Date
- Thread