I have an iOS device that on LTE, continually fails to negotiate a connection with a StrongSwan server. When I turned on AirPlane mode and turned on LTE again, it suddently started working.<div><br></div><div>I know the times don't line up, but this issue happened a number of times</div>
<div><br></div><div>Anyone have any idea about this?</div><div><br></div><div>Iphone Logs</div><div><br></div><div><div>Apr 10 15:53:49 Anuaimi-iPhone-5 racoon[6434] <Debug>: 76 bytes message received from *remote-server*[4500] to 25.186.230.35[4500]</div>
<div>Apr 10 15:53:49 Anuaimi-iPhone-5 racoon[6434] <Debug>: start search for IKE-Session. target *remote-server*[4500].</div><div>Apr 10 15:53:50 Anuaimi-iPhone-5 racoon[6434] <Debug>: still search for IKE-Session. this *remote-server*[4500].</div>
<div>Apr 10 15:53:50 Anuaimi-iPhone-5 racoon[6434] <Debug>: Pre-existing IKE-Session to *remote-server*[4500]. case 1.</div><div>Apr 10 15:53:50 Anuaimi-iPhone-5 racoon[6434] <Error>: mode config 6 from *remote-server*[4500], but ISAKMP-SA 05feba2cf5456f1e:10c313a91bba5f06 isn't established.</div>
<div>Apr 10 15:53:52 Anuaimi-iPhone-5 racoon[6434] <Debug>: Adding NON-ESP marker</div><div>Apr 10 15:53:52 Anuaimi-iPhone-5 racoon[6434] <Debug>: 1520 bytes from 25.186.230.35[4500] to *remote-server*[4500]</div>
<div>Apr 10 15:53:52 Anuaimi-iPhone-5 racoon[6434] <Debug>: sockname 25.186.230.35[4500]</div><div>Apr 10 15:53:52 Anuaimi-iPhone-5 racoon[6434] <Debug>: send packet from 25.186.230.35[4500]</div><div>Apr 10 15:53:52 Anuaimi-iPhone-5 racoon[6434] <Debug>: send packet to *remote-server*[4500]</div>
<div>Apr 10 15:53:52 Anuaimi-iPhone-5 racoon[6434] <Debug>: @@@@@@ data being sent:</div></div><div><br></div><div>StrongSwan Logs</div><div><br></div><div><div>r 10 19:46:58 14[IKE] received retransmit of request with ID 0, retransmitting response</div>
<div>Apr 10 19:46:58 14[NET] sending packet: from *remote-server*[4500] to 24.114.27.137[16653] (2476 bytes)</div><div>Apr 10 19:47:01 15[NET] received packet: from 24.114.27.137[16653] to *remote-server*[4500] (1516 bytes)</div>
<div>Apr 10 19:47:01 15[IKE] received retransmit of request with ID 0, retransmitting response</div><div>Apr 10 19:47:01 15[NET] sending packet: from *remote-server*[4500] to 24.114.27.137[16653] (2476 bytes)</div><div>Apr 10 19:47:03 16[IKE] sending retransmit 2 of request message ID 3860739891, seq 1</div>
<div>Apr 10 19:47:03 16[NET] sending packet: from *remote-server*[4500] to 24.114.27.137[16653] (76 bytes)</div><div>Apr 10 19:47:13 10[NET] received packet: from 24.114.27.137[16653] to *remote-server*[4500] (1516 bytes)</div>
<div>Apr 10 19:47:13 10[IKE] received retransmit of request with ID 0, retransmitting response</div><div>Apr 10 19:47:13 10[NET] sending packet: from *remote-server*[4500] to 24.114.27.137[16653] (2476 bytes)</div><div>Apr 10 19:47:16 11[IKE] sending retransmit 3 of request message ID 3860739891, seq 1</div>
<div>Apr 10 19:47:16 11[NET] sending packet: from *remote-server*[4500] to 24.114.27.137[16653] (76 bytes)</div></div><div><br></div><div><br></div><div>ipsec.conf</div><div><div>conn iphone-general</div><div> keyexchange=ikev1</div>
<div> rightauth=pubkey</div><div> rightauth2=xauth-pam</div><div> left=%defaultroute</div><div> leftid=@<a href="http://ipsec.surfeasy.mobi">ipsec.surfeasy.mobi</a></div><div> leftsubnet=<a href="http://0.0.0.0/0">0.0.0.0/0</a></div>
<div> leftfirewall=yes</div><div> leftcert=defaultCert.pem</div><div> right=%any</div><div> rightsubnet=<a href="http://10.253.0.0/16">10.253.0.0/16</a></div><div> rightsourceip=<a href="http://10.253.0.0/16">10.253.0.0/16</a></div>
<div> # Require all subject fields to be matched by star</div><div> # As well as CA's pull in</div><div> rightid="C=DEF, ST=*, L=*, O=*, CN=*, E=*"</div><div> auto=add</div></div>