[strongSwan] Mac OS 10.10 Client to Linux Strongswan server HASH N(AUTH_FAILED) error
Tobias Brunner
tobias at strongswan.org
Mon Apr 25 17:52:19 CEST 2016
Hi Jude,
> I am using a simplified ipsec.conf file:
> cat ipsec.conf
> # /etc/ipsec.conf - strongSwan IPsec configuration file
>
>
> config setup
>
>
> conn %default
> ikelifetime=60m
> keylife=20m
> rekeymargin=3m
> keyingtries=1
> keyexchange=ikev1
> leftauth=pubkey
> rightauth=pubkey
> rightid="C=US, O=BSI, CN=judeo at blansys.com"
You need at least one conn section other than %default that has
`auto=add` configured, otherwise, there are no configs:
> Apr 25 09:47:57 RH7Standard charon: 10[IKE] no IKE config found for
> 10.0.11.200...10.0.11.160, sending NO_PROPOSAL_CHOSEN
And you will probably still need rightauth2=xauth for this client.
Regards,
Tobias
More information about the Users
mailing list