[strongSwan] Strongswan+Android+Xauth

Ingmar Rosenhagen IRosenhagen at gmx.net
Tue Aug 7 09:12:17 CEST 2012


Hi,

after my Android-VPN to Strongswan worked like a charm, I've upgrade to strongswan 4.5.2. After that the the Android-Connection stopped working.
I get the following Logoutput:


Aug  7 08:30:35 wiederkaeuer pluto[16235]: | preparse_isakmp_policy: peer requests XAUTHPSK+XAUTHSERVER authentication
Aug  7 08:30:35 wiederkaeuer pluto[16235]: packet from 46.115.19.143:500: initial Main Mode message received on xx.xx.xx.xx:500 but no connection has been authorized with policy=XAUTHPSK+XAUTHSERVER
Aug  7 08:30:35 wiederkaeuer pluto[16235]: | next event EVENT_REINIT_SECRET in 3531 seconds

I've checked ipsec.secrets to use the new syntax:

user : XAUTH 0x7433737400

Tried to remove the Null-Byte as well, but that didn't change anything. It looks like the strongswan-server isn't even trying to start the xauth-process. Logfiles on Android just show a timeout.
Any hint what I should check next?

ipsec.conf:

conn android2
        left=server's ip
        leftsubnet=0.0.0.0/0
        right=%any
        rightsourceip=10.0.0.128/25
        auto=add
        authby=xauthpsk
        xauth=server
        pfs=no


Kind Regards






More information about the Users mailing list