[strongSwan] DPD [lack of] interoperability between strongswan and Cisco IOS
Olivier PELERIN
olivier_pelerin at hotmail.com
Fri May 31 07:06:47 CEST 2013
Strongswan version 5.01 [ 10.1.1.254 is the Cisco device].
We clearly see Strongswan sending the capability in MM1 and Cisco in MM4. For what ever reason, Strongswan ignore that message.
Looks like a bug to me.
From: olivier_pelerin at hotmail.com
To: users at lists.strongswan.org
Date: Wed, 29 May 2013 21:15:15 +0200
Subject: [strongSwan] DPD [lack of] interoperability between strongswan and Cisco IOS
Hello guys,
While playing [ikev1] with Strongswan and Cisco IOS, I've seen the following wierd behavior:
Strongswan Sends his Vendor ID in Main Mode 1 - IOS sends his vendor ID in Main Mode 4 but Strongswan does not seems to recognize it.
I had a look at RFC 3706 / 2407 / 2408 and I dont see requirements to reply to this vendor ID in MM2.
Is there a way of sending this DPD vendor ID in MM3?
Regards,
Olivier pelerin
_______________________________________________
Users mailing list
Users at lists.strongswan.org
https://lists.strongswan.org/mailman/listinfo/users
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130531/89f9bc4e/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: strongwan-cisco-ike.pcap.pcapng
Type: application/octet-stream
Size: 4076 bytes
Desc: not available
URL: <http://lists.strongswan.org/pipermail/users/attachments/20130531/89f9bc4e/attachment.obj>
More information about the Users
mailing list