[strongSwan] eap-mschapv2 NetworkManager
Tobias Brunner
tobias at strongswan.org
Thu Oct 7 18:22:25 CEST 2010
Hi Peter,
Considering the following parts of the logs...
> *NetworManager logs*:
>
> 14:54:57 charon: 09[ENC] generating IKE_SA_INIT request 0 [ SA KE No
> N(NATD_S_IP) N(NATD_D_IP) ]
> 14:54:57 charon: 09[NET] sending packet: from 10.1.0.100[500] to
> 10.1.0.2[500]
> 14:55:01 charon: 08[IKE] retransmit 1 of request with message ID 0
> 14:55:01 charon: 08[NET] sending packet: from 10.1.0.100[500] to
> 10.1.0.2[500]
>
> *strongSwan gateway*:
>
> 14:55:16 11[ENC] generating IKE_SA_INIT response 0 [ SA KE No
> N(NATD_S_IP) N(NATD_D_IP) CERTREQ N(MULT_AUTH) ]
> 14:55:16 11[NET] sending packet: from 10.1.0.2[500] to 10.1.0.100[500]
> 14:55:20 12[NET] received packet: from 10.1.0.100[500] to 10.1.0.2[500]
> 14:55:20 12[ENC] parsed IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP)
> N(NATD_D_IP) ]
> 14:55:20 12[IKE] received retransmit of request with ID 0,
> retransmitting response
> 14:55:20 12[NET] sending packet: from 10.1.0.2[500] to 10.1.0.100[500]
...it seems that the IKE_SA_INIT response sent by the gateway never
reaches the client. Could you try running tcpdump or wireshark on the
client to see if the host actually receives the response.
Regards,
Tobias
More information about the Users
mailing list