[strongSwan] ikev1 not detecting domain name
rakesh bansod
rakesh.bansod1209 at gmail.com
Mon Sep 9 11:13:26 CEST 2013
Hi,
I have defined a connection with right=rakesh.com, and ip for rakesh.com
is stored in /etc/hosts.
When i connect using ikev2 it gets connected easily but when i use ikev1
it shows following lines.
initiating Main Mode IKE_SA testing[2] to 10.202.25.201
generating ID_PROT request 0 [ SA V V V V ]
sending packet: from 10.202.2.48[500] to 10.202.25.201[500] (224 bytes)
received packet: from 10.202.25.201[500] to 10.202.2.48[500] (136 bytes)
parsed ID_PROT response 0 [ SA V V V ]
received XAuth vendor ID
received DPD vendor ID
received NAT-T (RFC 3947) vendor ID
generating ID_PROT request 0 [ KE No NAT-D NAT-D ]
sending packet: from 10.202.2.48[500] to 10.202.25.201[500] (372 bytes)
received packet: from 10.202.25.201[500] to 10.202.2.48[500] (372 bytes)
parsed ID_PROT response 0 [ KE No NAT-D NAT-D ]
generating ID_PROT request 0 [ ID HASH ]
sending packet: from 10.202.2.48[500] to 10.202.25.201[500] (76 bytes)
received packet: from 10.202.25.201[500] to 10.202.2.48[500] (76 bytes)
parsed ID_PROT response 0 [ ID HASH ]
IDir '10.202.25.201' does not match to 'rakesh.com'
deleting IKE_SA testing[2] between
10.202.2.48[10.202.2.48]...10.202.25.201[%any]
sending DELETE for IKE_SA testing[2]
generating INFORMATIONAL_V1 request 2812587506 [ HASH D ]
sending packet: from 10.202.2.48[500] to 10.202.25.201[500] (92 bytes)
connection 'testing' established successfully
but when i use ipsec status it shows nothing.
Is it the problem with IKEV1 that it does not detect domain names or the
problem is with my connection itself.
Please help.
Thank you,
Rakesh
More information about the Users
mailing list