[strongSwan] iOS IKEv2
Karl Hiramoto
karl at hiramoto.org
Sat Sep 12 13:14:46 CEST 2015
Hi Sam,
Would you mind sharing your strongswan and iOS config profile? I
was looking at this recently and had issues during the IKE SA phase.
The certificate authentication passed but didn't get much further.
My strongswan config:
conn %default
ikelifetime=60m
keylife=20m
rekeymargin=3m
keyingtries=1
keyexchange=ikev2
ike=aes256-sha256-modp2048,aes128-sha1-modp768,aes256-sha256-modp1024
esp=aes256-sha256-modp2048,aes128-sha1-modp768,aes256-sha256-modp1024
conn roadwarrior
left=%any
leftcert=server.crt
leftid=user at domain.org
leftfirewall=yes
lefthostaccess=yes
leftsubnet=0.0.0.0/0
rightsourceip=172.31.255.0/24
right=%any
rightid=%any
auto=add
forceencaps=yes
mobike=yes
leftikeport=4500
More information about the Users
mailing list