Hi Martin,
On Thursday 28 June 2012 01:27 PM, Martin Willi wrote:
Hi,
10[IKE] received NO_PROPOSAL_CHOSEN notify, no CHILD_SA built
10[IKE] CHILD_SA rekeying failed, trying again in 24 seconds
Hence, is sending notify payload (no proposal chosen) not treated as
failure for rekey
Hello!
Is this the new feature of High Availability for IPsec RFC-6311 ?
Does this patch generate IKE exchanges to increases IPsec Counters?
I thought that the first patches didn't increase the IPsec replay counters.
Is this a new feature in ha3.3? Or since when did you developed this
Daniel,
Is this the new feature of High Availability for IPsec RFC-6311 ?
Our HA solution works different and is not based on RFC 6311. In fact,
we don't need any additional protocol support in IKEv2 between server
and client, all the synchronization is done between the cluster nodes
directly.
Hi,
I'm new to strongswan and run into issues on setting up my ipsec vpn
for roaming iOS clients. They need to have access to system on the LAN
while traveling and here is what I've got:
LAN 192.168.10.0/24 eth0 192.168.10.231 SERVER 64.xxx.xxx.200
eth1 internet client
Hi all,
Today I was upgrading our systems from strongswan 4.5.2 to 4.6.2. The upgrade
as such was running fine but unfortunately I am facing a problem and could not
find a solution. Thus, I would appreciate if you could give me some hints how
to solve the following issue:
It seems that
Hello Joern,
that inital_contact support can be turned off by using the “uniqueids”
parameter but this parameter is already set to “no” without improving
the situation.
If a responder receives an INITIAL_CONTACT, it will delete any existing
connections using the same IKE identities. This
I am working to resolve the following error (background information
below):
===
cannot respond to IPsec SA request because no connection is known for
0.0.0.0/0===68.15.149.43:4500[C=US, O=Confusticate,
CN=bree]...64.196.84.195:65211[C=US, O=Confusticate, CN=JEB
Thinkpad]===169.15.21.170/32
HI all,
I currently have 2 strongSwans in my environment and one is currently
authenticating and 1 is not.
I have cloned the configurations to the 'T' and yet still once allow
authentication to pass. The one that is passing authentication is only passing
authentication with 1 username, but
Hi,
I am trying to setup up a VPN connection using mobile clients using
authby=xauthrsasig. The log messages on the server show that the
authentication was successful but the clients shows that negotiation
with VPN server failed. I am providing the entire output seen when
running the command,
