locked
Trying to execute the code for Manual SA keyeing for IPSec, but the IPSec AH protocol is not getting enforced in the outgoing packets RRS feed

  • Question

  • I am trying to execute the manual SA Keyeing code for IPSec with the APIs for Filter addition, SA creation, getting inbound SPI and adding inbound and Outbound SAs. All the APIs are returning success. But when I am trying aping test from the local IP to the remote IP between which the SAs are created, then the ICMP packets are not showing any AH header. Pls let me know if anything more needs to be done for successful creation of inbouns and outbound SAs and enforcing IPSec policies for the outbound traffic. Pls let me know urgently.
    Friday, September 16, 2011 10:01 AM

All replies

  • What does your IPsec Policy look like?  Are you exempting ICMP from IPsec policy, or does your policy cover al traffic?

     


    Dusty Harper [MSFT]
    Microsoft Corporation
    ------------------------------------------------------------
    This posting is provided "AS IS", with NO warranties and confers NO rights
    ------------------------------------------------------------
    Monday, October 3, 2011 6:51 PM
    Moderator