Project

General

Profile

Actions

Bug #1856

closed

Removing a Phase 2 does not remove the SPD policy

Added by Seth Mos over 12 years ago. Updated about 11 years ago.

Status:
Closed
Priority:
Normal
Assignee:
-
Category:
IPsec
Target version:
Start date:
09/08/2011
Due date:
% Done:

0%

Estimated time:
Plus Target Version:
Release Notes:
Affected Version:
2.1-IPv6
Affected Architecture:

Description

Removing a IPv6 phase 2 entry leaves the IPsec SPD policy in place.

Deleting it manually from the IPsec status SPD page does work.

Actions #1

Updated by Seth Mos over 12 years ago

  • Status changed from New to Closed

Failed to replicate on current code.

more /tmp/spd.conf.reload.1318965869.ob2B1v
spddelete -6 2001:470:d72c:0:0:0:0:0/64 2001:db8:100::/64 any -P out ipsec esp/tunnel/2001:470:1f14:e0c::2-2001:db8::1/unique;
spddelete -6 2001:db8:100::/64 2001:470:d72c:0:0:0:0:0/64 any -P in ipsec esp/tunnel/2001:db8::1-2001:470:1f14:e0c::2/unique;
spdadd -6 2001:470:d72c:0:0:0:0:0/64 2001:db8:100::/59 any -P out ipsec esp/tunnel/2001:470:1f14:e0c::2-2001:db8::1/unique;
spdadd -6 2001:db8:100::/59 2001:470:d72c:0:0:0:0:0/64 any -P in ipsec esp/tunnel/2001:db8::1-2001:470:1f14:e0c::2/unique;

Actions #2

Updated by Cyrill B about 11 years ago

This bug is related to #2719 and has most likely also been resolved.

Actions

Also available in: Atom PDF