<div dir="ltr">Now I've tried to load modules by hand. I've added following line to strongswan.conf:<br>load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown resolve attr farp xauth-generic<br>
<br>And if I check charon logs, it looks like it connects and then immediately disconnects from vpn.<br>Here are interesting lines from log file, (I connect with iphone and get "Negotiation with the VPN server failed":<br>
<br>...<br>Nov 7 10:31:12 14[CFG] id '<server.wan.ip>' not confirmed by certificate, defaulting to 'C=SI, O=Hlupo, CN=clientLupo'<br>...<br>Nov 7 10:31:12 14[CFG] id '%any' not confirmed by certificate, defaulting to 'C=SI, O=Hlupo, CN=<server.wan.ip>'<br>
...<br>Nov 7 10:31:12 14[CFG] left is other host, swapping ends<br>...<br>Nov 7 10:13:55 04[IKE] IKE_SA (unnamed)[1] state change: CREATED => CONNECTING<br>...<br>Nov 7 10:13:56 05[IKE] remote host is behind NAT<br>
...<br>Nov 7 10:13:57 11[IKE] XAuth authentication of 'lupo' successful<br>...<br>Nov 7 10:13:57 12[IKE] IKE_SA ios[1] state change: CONNECTING => ESTABLISHED<br>...<br>Nov 7 10:13:57 12[IKE] peer requested virtual IP %any<br>
Nov 7 10:13:57 12[IKE] no virtual IP found for %any requested by 'lupo'<br>...<br>Nov 7 10:14:13 05[ENC] parsing HASH_V1 payload finished<br>Nov 7 10:14:13 05[ENC] parsing DELETE_V1 payload, 40 bytes left<br>...<br>
Nov 7 10:14:13 05[ENC] parsing DELETE_V1 payload finished<br>...<br>Nov 7 10:14:13 05[IKE] IKE_SA ios[1] state change: ESTABLISHED => DELETING<br>Nov 7 10:14:13 05[MGR] checkin and destroy IKE_SA ios[1]<br>Nov 7 10:14:13 05[IKE] IKE_SA ios[1] state change: DELETING => DESTROYING<br>
Nov 7 10:14:13 05[MGR] check-in and destroy of IKE_SA successful<br>Nov 7 10:14:13 02[NET] waiting for data on sockets<br>Nov 7 10:14:25 15[JOB] got event, queuing job for execution<br>Nov 7 10:14:25 15[JOB] next event in 9732s 760ms, waiting<br>
Nov 7 10:14:25 06[MGR] checkout IKE_SA<br><br>Should I put something else instead of "right=%any" ? <br></div>