Hi, <div><br></div><div>Anyone have idea on this strongswan behavior? </div><div><br></div><div>Thanks. </div><div><br></div><div>Regards,</div><div>Jegathesh.M<br><br><div class="gmail_quote">On Sat, Mar 16, 2013 at 4:43 PM, jegathesh malaiyappan <span dir="ltr"><<a href="mailto:mjegakathir@gmail.com" target="_blank">mjegakathir@gmail.com</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><div><br></div><div>16:11:01.349352 IP 4.1.1.1.isakmp > 4.1.1.10.isakmp: isakmp: phase 2/others ? #37[]</div><div>16:11:01.349602 IP 4.1.1.10.isakmp > 4.1.1.1.isakmp: isakmp: phase 2/others ? #37[]</div>
<div><br></div>
<div>16:11:11.349635 IP 4.1.1.1.isakmp > 4.1.1.10.isakmp: isakmp: phase 2/others ? #37[]</div><div>16:11:11.349875 IP 4.1.1.10.isakmp > 4.1.1.1.isakmp: isakmp: phase 2/others ? #37[]</div><div class="HOEnZb"><div class="h5">
<div><br></div><br><div class="gmail_quote">
On Sat, Mar 16, 2013 at 4:36 PM, jegathesh malaiyappan <span dir="ltr"><<a href="mailto:mjegakathir@gmail.com" target="_blank">mjegakathir@gmail.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">

<p class="MsoNormal"><span style="color:#17365d">Hi,</span></p>

<p class="MsoNormal"><span style="color:#17365d"> </span></p>

<p class="MsoNormal"><b><span style="color:#17365d">Strongswan :
4.5.3 </span></b></p>

<p class="MsoNormal"><span style="color:#17365d"> </span></p>

<p class="MsoNormal"><b><span style="color:#548dd4">NODE A</span></b><span style="color:#17365d">  </span><span style="font-family:Wingdings;color:#17365d">ß</span><span style="color:#17365d">-----------------------------------------------------------------------</span><span style="font-family:Wingdings;color:#17365d">à</span><span style="color:#76923c">NODE B</span><span style="color:#17365d"></span></p>




<p class="MsoNormal"><span style="color:#17365d">(Initiator & Responder)                                                                   
(Initiator & Responder)</span></p>

<p class="MsoNormal"><span style="color:#17365d"> </span></p>

<p class="MsoNormal"><span style="color:#17365d">NODE A ---</span><span style="font-family:Wingdings;color:#17365d">à</span><span style="color:#17365d"> conn403 <span style="background:yellow">is configured</span> in NODE A</span></p>




<p class="MsoNormal"><span style="color:#17365d">NODE B  --</span><span style="font-family:Wingdings;color:#17365d">à</span><span style="color:#17365d"> conn403 <span style="background:red">is
not configured</span> in NODE B</span></p>

<p class="MsoNormal"><span style="color:#17365d"> </span></p>

<p class="MsoNormal"><span style="color:#17365d">NODE A is sending ISAKMP message to NODE B. This is excepted behavior. </span></p>

<p class="MsoNormal"><span style="color:#17365d"> </span></p>

<p class="MsoNormal"><span style="color:#17365d">But, NODE B is responding for this un-configured connection message.</span></p>

<p class="MsoNormal"><span style="color:#17365d"> </span></p>

<p class="MsoNormal"><span style="color:#17365d">Is this expected behavior in Strongswan? Please clarify me this. </span></p>

<p class="MsoNormal"><span style="color:#17365d"> </span></p>

<p class="MsoNormal"><span style="color:#17365d"><snip></span></p>

<p class="MsoNormal"><span style="color:#17365d">conn conn403</span></p>

<p class="MsoNormal"><span style="color:#17365d">  type=tunnel</span></p>

<p class="MsoNormal"><span style="color:#17365d">  leftsubnet=<a href="http://4.1.1.1/32" target="_blank">4.1.1.1/32</a></span></p>

<p class="MsoNormal"><span style="color:#17365d">  rightsubnet=<a href="http://40.1.1.100/24" target="_blank">40.1.1.100/24</a></span></p>

<p class="MsoNormal"><span style="color:#17365d">  left=4.1.1.1</span></p>

<p class="MsoNormal"><span style="color:#17365d">  right=4.1.1.10</span></p>

<p class="MsoNormal"><span style="color:#17365d">  keyexchange=ikev2</span></p>

<p class="MsoNormal"><span style="color:#17365d"> reauth=no</span></p>

<p class="MsoNormal"><span style="color:#17365d"> 
ike=aes128-sha1-modp1024,3des-sha1-modp1024!</span></p>

<p class="MsoNormal"><span style="color:#17365d">  ikelifetime=84395s</span></p>

<p class="MsoNormal"><span style="color:#17365d">  esp=aes128-sha1,3des-sha1!</span></p>

<p class="MsoNormal"><span style="color:#17365d">  authby=pubkey</span></p>

<p class="MsoNormal"><span style="color:#17365d">  rightid=%any</span></p>

<p class="MsoNormal"><span style="color:#17365d">  leftid="192.168.255.129"</span></p>

<p class="MsoNormal"><span style="color:#17365d">  keylife=86400s</span></p>

<p class="MsoNormal"><span style="color:#17365d">  dpdaction=restart</span></p>

<p class="MsoNormal"><span style="color:#17365d">  dpddelay=10</span></p>

<p class="MsoNormal"><span style="color:#17365d">  dpdtimeout=120</span></p>

<p class="MsoNormal"><span style="color:#17365d">  rekeyfuzz=50%</span></p>

<p class="MsoNormal"><span style="color:#17365d">  rekeymargin=180s</span></p>

<p class="MsoNormal"><span style="color:#17365d"></snip></span></p><p class="MsoNormal"><span style="color:#17365d"><br></span></p><p class="MsoNormal"><font color="#17365d">Thanks in advance. </font></p><span><font color="#888888"><p class="MsoNormal">


<font color="#17365d"><br></font></p><p class="MsoNormal"><font color="#17365d">-Jegathesh</font></p><p class="MsoNormal"><font color="#17365d"><br></font></p><p class="MsoNormal"><font color="#17365d"><br></font></p>
</font></span></blockquote></div><br><br clear="all"><div><br></div>
</div></div></blockquote></div><br></div>