thanks guys, I switched to pluto, now it's the error like: | preparse_isakmp_policy: peer requests PUBKEY+XAUTHRSASIG+XAUTHSERVER authentication packet from 218.240.6.69:59481: initial Main Mode message received on 167.22.15.11:500 but no connection has been authorized with policy=PUBKEY+XAUTHRSASIG+XAUTHSERVER | next event EVENT_REINIT_SECRET in 3326 seconds
maybe the certs are wrong, I follow this guide to make 2 keys/cert for server and client: http://wiki.strongswan.org/wiki/strongswan/SimpleCA the server use no2.key/cert, the /etc/ipsec.secrets is : RSA no2.key and the no1.cert inported in Cisco vpn client. On Thu, Jan 7, 2010 at 12:25 AM, David T. Kerns <dke...@westell.com> wrote: > strongSwan has two apps, pluto for ikev1 and charon for ikev2, so you can't > have plutostart=no and get ikev1 to work > > -----Original Message----- > From: users-boun...@lists.strongswan.org > [mailto:users-boun...@lists.strongswan.org] On Behalf Of Kalaj > Sent: Wednesday, January 06, 2010 9:09 AM > To: Martin Willi > Cc: users@lists.strongswan.org > Subject: Re: [strongSwan] Try to use Cisco VPN client > > just try ikev1, but still the same error. > > > On Wed, Jan 6, 2010 at 11:02 PM, Martin Willi <mar...@strongswan.org> wrote: >> Hi, >> >>> plutostart=no >>> keyexchange=ikev2 >> >> I'm not aware of any Cisco VPN client that speaks IKEv2. You'll have to >> setup pluto and define a IKEv1 connection. >> >> Regards >> Martin >> >> > _______________________________________________ > Users mailing list > Users@lists.strongswan.org > https://lists.strongswan.org/mailman/listinfo/users > > *************************************************************************************** > This e-mail and its attachments are a private communication sent from Westell > Technologies, Inc., > a telecommunications company. Its contents may contain confidential and > proprietary information that is protected. > If you are not the intended recipient, you are hereby notified that any > disclosure, copying, distribution or use of the > information contained in or attached to this message is strictly prohibited. > If you have received this e-mail in error, > please notify the sender by replying to this message, and then delete it from > your system. Thank you. > _______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users
