[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ipsec] maually keyed sa and anti-replay enabled

Hello everyone,
is it possible to enable anti-replay checking  with SAs keyed manually? I know that it's useless but I wanna do this just fort test purposes. I've tried this SA :
add fe80::acac:acff:feaa:aa11 fe80::209:5bff:fe0a:b30 esp 0x200 -r 6400 -m tunnel  -E des-cbc "integrit" -A hmac-md5 "authentication!!";  but it's not working.
thank you in advance.
Ipsec mailing list