Netkey detected testing for disabled icmp send_redirects failed

Openswan netkey detected testing for disabled icmp send_redirects failed,netkey detected testing for disabled icmp

#ipsec verify

Error : netkey detected testing for disabled icmp send_redirects failed

You have to modify the fallowing line in sysctl.conf file , net.ipv4.ip_forward=1 by default the value will be 0 )

#vi /etc/sysctl.conf

net.ipv4.ip_forward = 1

(this values is reflect ip forwarding from one interface to another interface , specially from  public IP interface to Private IP interface” NAT”)

Apart from net.ipv4.ip_forward=1 you need to add fallowing lines at the end of sysctl.conf

# for ipsec, additional entries

net.ipv4.conf.all.send_redirects = 0

net.ipv4.conf.all.accept_redirects = 0

net.ipv4.conf.default.send_redirects = 0

net.ipv4.conf.default.accept_redirects = 0

 Screenshot

Finally you have to restart sysctl in order to changes take effect.

#sysctl -p

#ipsec verify

Result : no error

Openswan netkey detected testing for disabled icmp send_redirects failed,netkey detected testing for disabled icmp

Thank You.

Both comments and pings are currently closed.

Comments are closed.

Copyright ©Solutions@Experts.com
Copyright © NewWpThemes Techmark Solutions - www.techmarksolutions.co.uk