[strongSwan] Win 8.1 fails to connect - error 809 - fragmentation problem?
ck+strongswanusers at bl4ckb0x.de
Sun Jun 7 22:30:24 CEST 2015
I am using a Windows 8.1 client (its behind a NAT IPv4 router)
and trying to connect to my StrongSwan server, installed on my root
But this is failing, because Windows reports error 809.
My StrongSwan configuration is:
charondebug="cfg 0, dmn 2, ike 2, net 2, lib 3"
leftid="C=xx, ST=xxx, L=xxx, O=xxx, OU=xxx, CN=xxx, E=xxx"
So, I've started to capture packets. What I can see:
Windows 8.1 client:
It sends IKE_SA_INIT and gets an response
After this, it sends IKE_AUTH and retries? two times again.
Linux IPv4 NAT router, to which the windows 8.1 client is connected:
IKE_SA_INIT is send to server, response received and forwarded to
But I don't see anymore the IKE_AUTH. I can only see three times
fragmentation. Are these the IKE_AUTH packets?
StrongSwan server on the internet:
IKE_SA_INIT is received and replied back.
IKE_AUTH never arrives. Not even a fragmented packet.
So, is this a problem of fragmented packets? If so, what can I do?
fragmentation=yes is at least set. I am unsure, which part causes that
More information about the Users