[strongSwan] IKEv2 Over IPv6

Andreas Steffen andreas.steffen at strongswan.org
Wed Jul 20 14:20:39 CEST 2011

Hello Arnab,

if the ip6tables default policy is DROP then you must explicitly
allow UDP/500, UDP/4500 and ESP:




On 20.07.2011 13:04, Arnab Bakshi wrote:
> Hi Andreas,
>    Do we need to set any entry in iptables to ACCEPT the IKEv2 UDP ports
> (500 & 4500) when using strongswan.
>    Actually I am trying to bring up the session with strongswan against
> one of my implementation. 
> *   _Strongswan info:_*   
>     Release version: 4.5.2
>     Kernel: 2.6.35
>     Linux Flavour: Ubuntu- 0.10
> Please let me know on this?...Actually this used to work on Strongswan
> release 4.2.12 with kernel 2.6.9-22.EL and if we disable firewall.
> Regards
> Arnab  

Andreas Steffen                         andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution!                www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)

More information about the Users mailing list