[strongSwan] Difficult to connect the server.
Igor
j at owind.com
Sun Jan 2 10:43:04 CET 2011
Hi,
I am using Strongswan 4.5 as the VPN server, and sometimes client connecting
to the server become
very hard and failure, but wait for several minutes, connecting become easy
again(the IP pool not out). Can anyone tell me how to get around this issue?
Here is my conf:
config setup
crlcheckinterval=180
nat_traversal=yes
charonstart=no
nocrsend = yes
plutostart=yes
keep_alive = 20s
force_keepalive=yes
conn node1
type=tunnel
auto=add
installpolicy=yes
keyexchange=ikev1
pfs=no
keyingtries=1
ike=aes128-md5-modp1024
esp=aes128-md5
forceencaps=yes
authby=xauthpsk
xauth=server
modeconfig=push
compress=no
left=10.1.1.11
leftnexthop=10.1.1.1
leftsourceip=10.0.0.1
leftsubnet=0.0.0.0/0
right=%any
rightsourceip=10.0.0.2
rightsubnet=10.0.0.0/24
ikelifetime=12h
lifetime=12h
rekey=no
margintime=10m
reauth=no
dpdaction=clear
Bests,
-Igor
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20110102/eba80da7/attachment.html>
More information about the Users
mailing list