Hi Andreas,
Thanks for your help. I have another doubt regarding strongSwan
CREATE_CHILD_SA. Can I delete the CREATE_CHILD_SA from the strongSwan
side? What is the command for deleting the created CREATE_CHILD_SA in
the strongSwan ?
My requirement is to delete the CREATE_CHILD_SA in strongSwa
Hi,
> Whenever the byte in memory is half-word-aligned, reading it as a uint16
> works as expected. The other half of the time, the compiler is adjusting
> the pointer (back one) to make it half-word-aligned before reading the two
> bytes as a uint16.
Yes, it seems that some ARM CPUs don't like u
Tilak Adhya wrote:
>
> Hi Andreas,
>
> Thanks for your help. Here is the consistent debug information.
>
> You are saying that I need to send Traffic Selectors(TS) with the
> CREATE_CHILD_SA request. But in the RFC 4306, it is clearly written
> that TS are optional in the request-response for CR
Hi Tilak,
first a few comments on your ipsec.conf file:
>config setup
> interfaces="ipsec0=eth0"
The interfaces options is for the FreeS/WAN KLIPS
IPsec stack and is completely obsolete
> klipsdebug=all
> plutodebug=all
These debug options are for the IKEv1 pluto daemon
and n
am kara wrote:
> Two computers are road warriors and have dynamic IP addresses and
> want to have a secure IPsec connection. Do they have to to register
> at (or contact) a server first? How can they trust that server in
> this case that they haven't yet set up an IPsec connection?
IPsec is a pee
Hi Tilak,
I suspect that Andreas meant the log files output by strongswan. The
file you sent seems to be created by some tool called "IxANVL -
Automated Network Validation Library (ANVL)" which was built to verify
the correct implementation of network protocols.
So you are setting IxANVL at str