Re: IPSEC in 2.6.25 causes stalled connections

From: Herbert Xu
Date: Wed Jul 09 2008 - 04:44:07 EST

Next message: Ingo Molnar: "Re: [PATCH] x86: not overmap than end in init_memory_mapping -64bit"
Previous message: Yinghai Lu: "Re: [PATCH] x86: not overmap than end in init_memory_mapping - 64bit"
In reply to: Thomas Zeitlhofer: "Re: IPSEC in 2.6.25 causes stalled connections"
Next in thread: Herbert Xu: "Re: IPSEC in 2.6.25 causes stalled connections"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Tue, Jul 08, 2008 at 11:33:02PM +0200, Thomas Zeitlhofer wrote:
>
> (1) Use two (virtual) machines kvm1 and kvm2 and configure an IPSEC
> connection between them.
> (2) Watch the interface of one machine with nload or a similar tool
> (3) kvm1:~# cat /dev/zero | netcat -l -p 12345 &
> (4) kvm2:~# cat /dev/zero | netcat -l -p 12345 &
> (5) kvm1:~# netcat kvm2 12345 >/dev/null
>
> According to (2), the packet flow from kvm2 to kvm1 can bee watched
> now and everything works fine.
>
> (6) kvm2:~# netcat kvm1 12345 >/dev/null

Thanks! I've reproduced the problem. Now we just need to figure
out what it is :)

Cheers,
--
Visit Openswan at http://www.openswan.org/
Email: Herbert Xu ~{PmV>HI~} <herbert@xxxxxxxxxxxxxxxxxxx>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
--
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Ingo Molnar: "Re: [PATCH] x86: not overmap than end in init_memory_mapping -64bit"
Previous message: Yinghai Lu: "Re: [PATCH] x86: not overmap than end in init_memory_mapping - 64bit"
In reply to: Thomas Zeitlhofer: "Re: IPSEC in 2.6.25 causes stalled connections"
Next in thread: Herbert Xu: "Re: IPSEC in 2.6.25 causes stalled connections"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]