[hipl-users] Re: Base Exchange Problem

From: Dongsu Park <dpark1978@xxxxxxxxx>
To: miika.komu@xxxxxxx
Date: Fri, 16 Jan 2009 17:27:22 +0100

Hi,

I've just tested "hipfw -lAd" on my OpenWRT router, ASUS WL500W, withmidauth patch-219. It works just fine, without such an error.

...

debug(firewall.c:2088@main): starting up with rule_file:/etc/hip/firewall_confand connection timeout: 0debug(firewall.c:2344@firewall_increase_netlink_buffers): Increasing thenetlink buffers

debug(firewall.c:2106@main): IPv4 handle created
debug(firewall.c:2112@main): IPv4 handle mode COPY_PACKET set
debug(firewall.c:2121@main): IPv6 handle created
debug(firewall.c:2126@main): IPv6 handle mode COPY_PACKET set
debug(firewall.c:513@firewall_init_rules): Initializing firewall
...

I'm not sure if it's an OpenWRT specific issue.

Cheers,
Dongsu


Miika Komu wrote:

antonio quisillo wrote:

Hi,

I don't know why, but perhaps our OpenWRT experts could give you an answer.

Have you tried to execute what "firewall_increase_netlink_buffers" fromthe command line?

As a workaround, you could try comment out the code that code that stopsthe hipd:


#if 0
the code that gives you trouble
#endif

However, please keep in mind that disabling this particular code makesthe firewall weaker with high loads of traffic.

I did hipfw -lAd but the prompt stops atdebug(firewall.c:2020@firewall_increase_netlink_buffers): Increasingthe netlink buffers


why ?


2009/1/16 Miika Komu <miika.komu@xxxxxxx <mailto:miika.komu@xxxxxxx>>

    antonio quisillo wrote:

    Hi,

    are you running the hipfw with options -lAd ?


        Hi,
        I still have problem.

        I followed all the instructions present in the online manual (
        chapter 10 ) in order to obtain the HIP base exchange but I fail.

        The two host, Initiator and Responder, are on the same network.
        The Responder's LSI is 1.0.0.1 and when I ping this address the
        tcpdump command didn't catch HIP traffic.
        I also set the iptables by means of "Software Requirements"
        command (chapter 2 ).
        I ran hipd daemon first on the Responder's side and then on the
        Initiator's side.
        I use all kind of tcpdump command, how mention in ch10s02.

        How can I do to solve this problem?
        Could you send me a sample file of catch?
        Thanks for the help you are giving me.

Follow-Ups:

[hipl-users] Re: Base Exchange Problem
From: Dmitriy Kuptsov

References:
- [hipl-users] Re: Base Exchange Problem
  - From: antonio quisillo
- [hipl-users] Re: Base Exchange Problem
  - From: Miika Komu
- [hipl-users] Re: Base Exchange Problem
  - From: antonio quisillo
- [hipl-users] Re: Base Exchange Problem
  - From: Miika Komu
- [hipl-users] Re: Base Exchange Problem
  - From: antonio quisillo
- [hipl-users] Re: Base Exchange Problem
  - From: Miika Komu
- [hipl-users] Re: Base Exchange Problem
  - From: antonio quisillo
- [hipl-users] Re: Base Exchange Problem
  - From: Miika Komu

[hipl-users] Re: Base Exchange Problem

Other related posts: