[strongSwan] DH group MODP_2048 inacceptable, requesting MODP_1024
martin at strongswan.org
Wed Jan 19 14:11:00 CET 2011
> [IKE] DH group MODP_2048 inacceptable, requesting MODP_1024
> So why does the responder reject MODP_2048 when it is a supported algorithm?
MODP_2048 must not only be supported, it also must be contained in the
configured IKE proposal. As you didn't specify any ike= keyword in
ipsec.conf, it actually should, and I don't see why the responder
doesn't accept it.
Could you increase the log level of "cfg" to 2 (see ) and send us the
More information about the Users