[strongSwan] multiple ipsec tunnels (multiple ipsec/esp SAs between 2 peer gws with 1 IKE SA)

Martin Willi martin at strongswan.org
Tue Aug 2 09:39:54 CEST 2011

> 15[CFG] looking for peer configs matching[srv.strongswan.org]...[c5-1.strongswan.org]
> 15[CFG] no matching peer config found
> 15[ENC] generating IKE_AUTH response 1 [ N(AUTH_FAILED) ]

> conn rw-server
>         left=
>         leftsubnet=
>         right=%any

The problem is not the secret, but that no config matches on your
responder. "leftid" defaults to "left" (, but actually is
srv.strongswan.org. Try leftid=srv.strongswan.org, or even leftid=%any.


More information about the Users mailing list