[strongSwan] Problems with StrongSwan 5.x and Cisco
Volker Rümelin
vr_strongswan at t-online.de
Mon Dec 2 20:24:41 CET 2013
//Hi Matus,
> /13[CFG] keyexchange=ikev0/
you have to add
keyexchange=ikev1
to your connection definition. With the default of keyexchange=ike strongswan uses ikev2 as protocol.
> /13[NET] sending packet: from A.A.A.A[500] to E.E.E.E[500] (692 bytes)/
> /14[IKE] retransmit 1 of request with message ID 0/
> /16[IKE] retransmit 2 of request with message ID 0/
As you can see, your Cisco gateway doesn't respond to ikv2 messages.
Best regards,
Volker
More information about the Users
mailing list