On Sat, May 9, 2020, 17:19 Jim Geurts wrote:
> Hi,
>
> I'm new to the world of strongswan and vpns in general, so I apologize if
> this is answered elsewhere. I inherited a strongSwan box running Linux
> strongSwan U5.7.2/K4.14.177-139.253.amzn2.x86_64. The other end is a Cisco
> ASA5585X. The co
Gave that a shot and no luck :( I appreciate the suggestion, though!
On Sun, May 10, 2020 at 3:59 AM Alex K wrote:
>
>
> On Sat, May 9, 2020, 17:19 Jim Geurts wrote:
>
>> Hi,
>>
>> I'm new to the world of strongswan and vpns in general, so I apologize if
>> this is answered elsewhere. I inherit
Thanks Noel!
On Sat, May 9, 2020 at 12:50 PM Noel Kuntze
wrote:
> Hi,
>
> The other peer has some problem with it. Review its logs.
> > received NO_PROPOSAL_CHOSEN notify, no CHILD_SA built
>
> Kind regards
>
> Noel
>
> Am 09.05.20 um 16:20 schrieb Jim Geurts:
> > Hi,
> >
> > I'm new to the worl
hi guys
I got my strongswan updated to 5.8 and I think I migrated my
simple config correctly:
connections {
camuni {
remote_addrs="remote.fqdn" # The location
of the host, FQDN or IP
vips="0.0.0.0"
send_cert="never"
local {
id="me@domain"
auth="eap"
Hi,
You need to specify the EAP method you want to use to authenticate yourself.
And what's the ipsec.conf you're trying to translate?
Kind regards
Noel
Am 10.05.20 um 14:17 schrieb lejeczek:
> hi guys
>
> I got my strongswan updated to 5.8 and I think I migrated my
> simple config correctly:
I am building strongSwan natively on Windows with MSYS2 and MinGW-w64 following
the instructions at
https://wiki.strongswan.org/projects/strongswan/wiki/Windows.
The make terminates with messages:
libtool: compile: gcc -DHAVE_CONFIG_H -I. -I../../../..
-I../../../../src/libstrongswan -I../..
On 11/05/2020 02:40, Noel Kuntze wrote:
> Hi,
>
> You need to specify the EAP method you want to use to authenticate yourself.
> And what's the ipsec.conf you're trying to translate?
>
> Kind regards
>
> Noel
>
> Am 10.05.20 um 14:17 schrieb lejeczek:
>> hi guys
>>
>> I got my strongswan updated
Hi,
in the remote section you have to set
auth = pubkey
since the responder is using a certificate-based
authentication.
Regards
Andreas
On 10.05.20 14:17, lejeczek wrote:
> hi guys
>
> I got my strongswan updated to 5.8 and I think I migrated my
> simple config correctly:
>
> connections
But I think the remote side is not configured
for EAP-based client authentication or cannot
find its private signature key so AUTHENTICATION
FAILED ensues. Any chance of getting the remote log?
Andreas
On 11.05.20 08:45, Andreas Steffen wrote:
> Hi,
>
> in the remote section you have to set
>
>
