<div dir="ltr">Hi, s<div><br></div><div>I am new to strongswan world and have successfully setup a tunnel between two AWS's VPC, But i have to make some changes in config to comply with security requirement which is not working even after multiple tries. I went through old bug for intel-eni which was fixed but couldn't find any way to check and confirm if i have that fix or not. </div><div><br></div><div>Bug ref. - <a href="http://wiki.strongswan.org/issues/341" rel="nofollow">http://wiki.strongswan.org/issues/341</a></div><div>Fix ref. - <a href="https://marc.info/?l=linux-crypto-vger&m=139388786131685&w=2">https://marc.info/?l=linux-crypto-vger&m=139388786131685&w=2</a></div><div><br></div><div>The only difference in my working config and not working config is as below - </div><div><br></div><div>Working with - </div><div><div> ike=aes128-sha1-modp1024</div><div> esp=aes128-sha1-modp1024</div></div><div><br></div><div>Not working with - </div><div><div> ike=aes256gcm12-sha256-modp1536</div><div> esp=aes256gcm12-sha256-modp1536</div><div><br></div><div><br></div><div>I am using ikev2 on EC2 instance with kernel 3.13.0-85-generic #129-Ubuntu SMP. </div><div><br></div><div>Can someone help me ? </div><div><br></div>-- <br><div class="gmail_signature" data-smartmail="gmail_signature"><div dir="ltr">Regards,<div>Sandeep</div></div></div>
</div></div>