Bug 11431 - VTI: Connections with IPv6 peers fail
Summary: VTI: Connections with IPv6 peers fail
Status: CLOSED FIXED
Alias: None
Product: Network
Classification: Unclassified
Component: IPsec (show other bugs)
Version: unspecified
Hardware: unspecified Unspecified
: - Unknown - Minor Usability
Assignee: Jonatan Schlag
QA Contact:
URL:
Keywords:
Depends on: 11866
Blocks:
  Show dependency treegraph
 
Reported: 2017-08-08 12:52 UTC by Michael Tremer
Modified: 2018-09-22 13:27 UTC (History)
0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michael Tremer 2017-08-08 12:52:21 UTC 
The current version of the updown script cannot handle VTI connections with peers that are a IPv6 address
Comment 1 Michael Tremer 2018-03-09 21:22:35 UTC 
http://git.ipfire.org/?p=network.git;a=commit;h=dff38496350dd5ceef6286aa4bff2cc49fae3669

Author: Jonatan Schlag <jonatan.schlag@ipfire.org>

ip-tunnel: choose the correct type based on the ip protocol

IPv4 and IPv6 need different types for iproute2.
So in the _add function we have to determine the mode
based on the IP protocol of the ${remote_address}.

When we change ikey and okey we have to dertermine the mode the device
have currently.

Fixes: #11431

Signed-off-by: Jonatan Schlag <jonatan.schlag@ipfire.org>
Signed-off-by: Michael Tremer <michael.tremer@ipfire.org>