[strongSwan] Destination unreachable issue
Xin
knightluffy at live.com
Mon Dec 22 06:54:02 CET 2014
Hi, I'm using centOS with strongswan, but I cannot connect from win7 client.
When win7 send a IKE_SA_INIT to server, the server reply with an ICMP
packet, and showed "Destination unreachable(Host administratively
prohibited) from wireshark". And there is no log on /var/etc/strongswan. The
log showed like the following below:
Dec 22 12:14:21 02[JOB] watcher got notification, rebuilding
Dec 22 12:14:21 02[JOB] watching 9 for reading
Dec 22 12:14:21 02[JOB] watching 15 for reading
Dec 22 12:14:21 02[JOB] watching 16 for reading
Dec 22 12:14:21 02[JOB] watching 18 for reading
Dec 22 12:14:21 02[JOB] watcher going to select()
Dec 22 12:14:39 02[JOB] watched FD 15 ready to read
Dec 22 12:14:39 02[JOB] watching 9 for reading
Dec 22 12:14:39 02[JOB] watching 16 for reading
Dec 22 12:14:39 02[JOB] watching 18 for reading
Dec 22 12:14:39 02[JOB] watcher going to select()
Dec 22 12:14:39 02[JOB] watcher got notification, rebuilding
Dec 22 12:14:39 02[JOB] watching 9 for reading
Dec 22 12:14:39 02[JOB] watching 15 for reading
Dec 22 12:14:39 02[JOB] watching 16 for reading
Dec 22 12:14:39 02[JOB] watching 18 for reading
Dec 22 12:14:39 02[JOB] watcher going to select()
Dec 22 12:14:58 02[JOB] watched FD 15 ready to read
It is the first I deploy to the CentOS server, and just only one line log
different from the Ubuntu server(running with no problem):
Dec 22 12:14:20 00[LIB] openssl FIPS mode(0) - disabled
I have added the --with-fips-mode=1 to the ./configuration, but not worked.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20141222/fa5283da/attachment.html>
More information about the Users
mailing list