[strongSwan] "IDir does not match" for same strings; Trouble setting up connection to a Fritz Box
Marcel
marcel at istbeiuns.de
Wed Dec 10 21:51:37 CET 2014
Hi everyone,
I'm having some trouble setting up an IKEv1 connection between strongSwan and my Fritz box (using the web interface, not configuration files). This is the error that I get:
IDir '<redacted>.selfhost.eu' does not match to '<redacted>.selfhost.eu'
Both strings that I've replaced by <redacted> are equal in the output. This error message confuses me profoundly. Is there any way I can improve the output to show what has actually been compared and deemed unequal by strongSwan? Do you have any other pointers for me to check?
This is my configuration file:
conn mak
aggressive=no
left=198.52.abc.def
leftsubnet=192.168.1.0/24
leftfirewall=yes
lefthostaccess=yes
right=<redacted>.selfhost.eu
rightsubnet=192.168.10.0/24
rightallowany=yes
leftid="198.52.abc.def"
rightid="@<redacted>.selfhost.eu"
ike=aes256-sha1-modp1024
esp=aes256-sha1-modp1024
keyexchange=ikev1
ikelifetime=1h
keylife=8h
compress=no
dpddelay=30
dpdtimeout=120
dpdaction=none
authby=secret
auto=start
Thanks for any help or pointers
Marcel
More information about the Users
mailing list