<div dir="ltr">What about Linux logs? <div>Run ``swanctl --log`` on Linux and reinitiate connection. </div><div>Which version of Windows btw? </div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Fri, May 20, 2022 at 4:16 PM Tyler Phillippe <<a href="mailto:tylerphillippe@gmail.com">tylerphillippe@gmail.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex"><div dir="ltr"><div>Hello all! I am attempting to connect a Linux machine to Windows via Strongswan in a host-to-host configuration. I tested with Windows to Windows using the built-in firewall and it connected instantly. I changed the default Windows integrity and encryption ciphers and I think I changed them in the Linux Strongswan configuration. However, I am not getting any connection between the hosts and I can't find any logs on the Windows machine to help me narrow down what the issue is. It definitely does not work, since the SSH session on the Linux machine fails out. Below is the swanctl.conf file on my Linux machine. And, I know it's not the most secure method - I'm just trying to get it to initially connect with a PSK since that's the simplest for now. Windows doesn't support modp3072 unfortunately, so I had to manually set the Linux config below to modp2048. The Windows firewall is set to use AES-CBC 128, SHA-256, MODP2048 for key exchange and ESP AES-CBC 128, SHA-256 for data protection. What am I doing wrong? Thanks everyone!!<br></div><div><br></div><div>connections {<br> linuxHost {<br> local_addrs = (Linux machine)<br> remote_addrs = (Windows machine)<br> proposals = aes128-sha256-modp2048<br> local {<br> auth = psk<br> }<br> remote {<br> auth = psk<br> }<br> children {<br> linuxHost {<br> esp_proposals = aes128-sha256-modp2048<br> mode = transport<br> }<br> }<br> version = 2<br> reauth_time = 10800<br> }<br>}<br><br>secrets {<br> ike {<br> secret = <psk><br> }<br>}<br></div></div>
</blockquote></div>