Hello Naveen,
That means the RNG (RNG_WEAK type) that is provided by whatever plugin didn't
return an SPI but a failure instead.
Check what plugin provides RNG_WEAK on your system (ipsec stroke listalgs or
swanctl --list-algs) and check how that could occur.
Maybe file a bug with the project tha
Hello Peter,
UDP is a stateless (connectionless) protocol so that there is a message from
another IP logged does not mean it's a reply. Check if you still get these
requests
even if you don't initiate an IKE_SA.
Kind regards
Noel
Am 02.01.20 um 17:18 schrieb Peter Andersson:
> Hi!
>
> I'm ha
Hello M,
Disable route installation in strongSwan and manage them as you yourself see
fit.
IPsec will work regardless.
Kind regards
Noel
Am 02.01.20 um 12:45 schrieb /M:
> Hi,
>
> happy new year! Many thanks for the great project and the support.
>
> I'm currently trying to find a good confi
Hi Noel,
Thanks you , i see that I am using OpenSSL. I will email them on this
issue. However, it would be great if we get a vici error notification
saying SPI allocation failed so that I can tack some prevent action based
on the message.
random-gen: RNG_WEAK[openssl]
Thanks,
Naveen
On Fri
Hello Naveen,
You might have to increase the debug level to get the message.
Kind regards
Noel
Am 03.01.20 um 19:43 schrieb Naveen Neelakanta:
> Hi Noel,
>
> Thanks you , i see that I am using OpenSSL. I will email them on this issue.
> However, it would be great if we get a vici error notif
