[strongSwan] Strongswan 5.1.2 or 5.2.1, Windows 7, ikev2 is not still working !
Martin Willi
martin at strongswan.org
Fri Oct 17 10:07:03 CEST 2014
Hi,
> ikev2 connection as with machine certs as eap-mschapv2 do not work and
> causes the same error
> [KNL] no local address found in traffic selector
This is no hard error, but means that charon could not install an
implicit route for your negotiated IPsec policy. The tunnel otherwise
works just fine.
It seems that you have negotiated a 10.10.1.0/24 subnet for the gateway
side. However, charon could not find a locally installed IP address in
that range, hence it did not install a source route for that subnet.
If you actually need such a route depends on your setup, likely that the
tunnel just works nonetheless. If not you may try to add a static route
so that your gateway knows over which interface it should reach that
10.10.1.0/24 subnet.
Regards
Martin
More information about the Users
mailing list