[strongSwan] Some IKEv2 questions
Fred
curious_freddy at gmsl.co.uk
Wed Mar 4 12:36:22 CET 2015
On 04/03/2015 10:47, Martin Willi wrote:
> Kindly asking to keep the discussion on the list, thanks.
That was unintentional, sorry. I just hit reply, naughty Thunderbird!
> No, the strongSwan OS X App currently supports EAP-MSCHAPv2 only using
> username/password.
Very useful to know.
> In ipsec.conf, you configure rightauth=pubkey.
Super.
>> Mar 4 10:02:05 foo charon: 15[IKE] sending DPD request
>> Mar 4 10:02:05 foo charon: 15[ENC] generating INFORMATIONAL request 0 [ ]
>> Mar 4 10:04:50 foo charon: 02[IKE] giving up after 5 retransmits
>
> Your client does not answer to liveness checks. Most likely the packets
> get lost, or the client does not answer.
Now I know what these entries mean in the logs I'll be able to look into
it. DPD is the dead peer protection right?
Thank you very much for your help!! Fantastic product by the way !
More information about the Users
mailing list