[strongSwan] Some IKEv2 questions
Fred
curious_freddy at gmsl.co.uk
Thu Mar 5 10:37:13 CET 2015
On 04/03/2015 16:16, Martin Willi wrote:
> Not sure what exactly Microsoft means with that, but I can't confirm
> it.
Indeed. It's a bit ambiguous at best.
> .. these are not optional to implement as exchange responder, but
> part of the core standard.
In which case it looks like a typo in their docs even though they
specifically mention IKEv2.
In any case your comments gave me some fighting spirit and at least in
the case of Windows Phone 8.1 I've now had this working. Curiously, by
accident. The phone switched over to HSDPA+ instead of WiFi (perhaps the
WiFi signal was worse than the mobile signal) and the liveness checks
were responded to! This is odd as I'd be more inclined to think it would
work more reliably over WiFi than mobile data. In any case it looks like
I can now eliminate WP8.1 and StrongSwan and also confirm liveness
checking works fine between StrongSwan and Windows Phone 8.1, contrary
to the Microsoft's docs. Just need to get it working now over WiFi
connections.
I'll compare the logs between when it worked and when it didn't to see
if there were any differences in the characteristics of the traffic. For
instance, was it UDP encapsulated when it was working?
Not sure what kind of things can interfere with the liveness checks
whilst the tunnel itself works just fine.. <shrug>
More information about the Users
mailing list