[strongSwan] https website problem
steven liu
stevenliu88 at gmail.com
Fri Jan 18 11:35:22 CET 2013
Thanks. We already tried to set TCP MSS to 1300 by following commands. But
we still has the same problem.
iptables -t mangle -A POSTROUTING -p tcp --tcp-flags SYN,RST SYN -o eth0 -j
TCPMSS --set-mss 1300
iptables -t mangle -A POSTROUTING -p tcp --tcp-flags SYN,RST SYN -o eth0 -j
TCPMSS --clamp-mss-to-pmtu*
*
On Fri, Jan 18, 2013 at 12:09 PM, steven liu <stevenliu88 at gmail.com> wrote:
> Dear All,
>
> We have set up an ipsec vpn tunnel between an iphone and a strongswan vpn
> server by following the strong wiki guide. It works if we use iphone to
> access http website. But iphone cannot access any https website. We also
> use wireshark to capture packets in the strongswan vpn server. It shows
> some "TLS Encrypted Alert" packets. Any help much appreciated!
>
> Tks.
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130118/41183f47/attachment.html>
More information about the Users
mailing list