[strongSwan] strongSwan OS X Native app assign ipv6 to virtual IP to client

Fri May 29 21:47:52 CEST 2015

Hello list.
Thank you guys for your great work.

I'm using:
strongSwan OSX Native gui application Ver. 5.3.0 (1)
OS X Yosemite 10.10.3
strongSwan 5.2.1 on server side

My server have dual stack ipv6/ipv4 connection and i want to assign ipv6
and ipv4 to client that have only ipv4.
I see that charon-xpc not requesting %any6 virtual IP while connecting.

Here is my ipsec.conf:

    # left - local (server) side
    left=%any
    leftauth=pubkey
    leftcert=uk1.pvpn.pw.crt
    leftsendcert=always
    leftsubnet=0.0.0.0/0,2000::/3

    # right - remote (client) side
    right=%any
    rightauth=pubkey
    rightsourceip=192.168.103.0/24,2002:25f7:7489:3::/112
    rightdns=8.8.8.8,2001:4860:4860::8888

    conn ikev2-eap-md5
        keyexchange=ikev2
        rightauth=eap-md5
        eap_identity=%identity
        auto=add

I see both Virtual IP pools in "statusall".

Here is how OS X client looks in daemon.log:
   peer requested virtual IP %any
   assigning virtual IP 192.168.103.1 to peer 'osxclient1'

Looks like my goal similar to this example
http://www.strongswan.org/uml/testresults/ikev2/ip-two-pools-v4v6/index.html
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20150529/581cb965/attachment.html>