[strongSwan] How to keep trying to connect even after NO_PROPOSAL_CHOSEN received?

Hello all, I have some problems with keeping my roadwarrior to keep trying to connect to vpn gateway forever. It works when vpn gateway is lost or when connection was fully established and was then lost. But I have problem with situation like that: vpn gateway has some bad config and beacuse of

[strongSwan] PHASE 2 not Working ike1

Hi, I have installed strongswan on Ubuntu and am failing to pass phase 2 below is log from the cisco router we are trying to connect to can someone help me understand where the problem is. *Mar 15 08:36:26.353: ISAKMP:(0:396:SW:1):Input = IKE_MESG_INTERNAL, IKE_PHASE1_COMPLETE *Mar 15

Re: [strongSwan] Best way to connect?

On 15.03.2016 17:39, Tech wrote: > I have tried the Gnome NetworkManager Applet, but I have found it difficult > to configure. Build a host-to-host tunnel and use the daemon directly. -- Mit freundlichen Grüßen/Kind Regards, Noel Kuntze GPG Key ID: 0x63EC6658 Fingerprint: 23CA BB60 2146 05E7

Re: [strongSwan] MacOS: IKEv1 fails after wakeup

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 PS: After enabling debug logging in racoon and a reboot the problem went away. I will keep debugging enabled, of course. Regards Harri -BEGIN PGP SIGNATURE- Version: GnuPG v2

Re: [strongSwan] PHASE 2 not Working ike1

Hello Christopher, On 16.03.2016 16:30, christopher kamutumwa wrote: > *Mar 15 08:36:26.545: IPSEC(validate_transform_proposal): peer address > 185.3.95.94 not found > *Mar 15 08:36:26.545: ISAKMP:(0:396:SW:1): IPSec policy invalidated proposal > *Mar 15 08:36:26.545: ISAKMP:(0:396:SW:1): phase 2

Re: [strongSwan] MacOS: IKEv1 fails after wakeup

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 Hi Tobias, On 03/15/16 12:13, Tobias Brunner wrote: > Hi Harald, > >> I have no idea why the Mac opens a new session now, instead of relying upon >> the old IKE_SA, but it seems to me that the Mac missed to send xauth info. >> Is this correct?

[strongSwan] ikev2 strongswan client on Arch Linux

Hi I have successfully setup strongswan VPN server following instructions here[1]. I tested the server by connecting a Blackberry client and a Windows Phone client. Both used IKEv2 and worked fine. I have another laptop, running Arch, that I want to connect to the VPN server. But I can't

[strongSwan] Fwd: Re: Maximizing throughput / kernel bottlenecks

Forgot to address the list. Sorry. My email to Hose is starting below. Forwarded Message Subject:Re: [strongSwan] Maximizing throughput / kernel bottlenecks Date: Wed, 16 Mar 2016 23:22:25 +0100 From: Noel Kuntze To: Hose

Re: [strongSwan] MacOS: IKEv1 fails after wakeup

-BEGIN PGP SIGNED MESSAGE- Hash: SHA256 On 03/16/16 18:02, Harald Dunkel wrote: > PS: After enabling debug logging in racoon and a reboot the problem went > away. I will keep debugging enabled, of course. > PPS: After my IP provider changed the external IP address over night it was

[strongSwan] Routing traffic from veth pair to other veth pair in Namesapce

Hi All, I would like run strongswan in linux namespace between veth pair and protect all the traffic from lan to wan traffic.I need some help in getting routing between veth pairs of interfaces in the linux name space . I am unable to route packets between to different veth pairs . I have the