[strongSwan] Site-to-Site with Cisco devices
Noel Kuntze
noel at familie-kuntze.de
Mon Nov 30 17:06:12 CET 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Well, the CISCO devices wants a new one:
Nov 28 21:36:16 site1 charon: 04[ENC] parsed CREATE_CHILD_SA request 8 [ SA No TSi TSr ]
Nov 28 21:36:17 site1 charon: 04[IKE] CHILD_SA ciscotest{973} established with SPIs c54b639d_i ca4c6022_o and TS 10.2.0.0/16 === 10.10.10.0/24
Maybe it can't handle several subnets per SA?
Try building it like with IKEv1 with several CHILD_SAs.
- --
Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze
GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=4D3C
-----END PGP SIGNATURE-----
More information about the Users
mailing list