[strongSwan] Changing IKE port
andreas.steffen at strongswan.org
Wed Jul 13 18:01:14 CEST 2016
you have to compile and load the socket-dynamic plugin in order
for non-standard IKE ports to work.
On 13.07.2016 17:22, Eric Boudrand wrote:
> I am trying to establish IKEv1 tunnel with non standard IKE port. I have
> set charon.port=6701 in /etc/strongswan.d/charon.conf.
> In the logs, i can see the incoming packet :
> Jul 13 16:43:41 ikev2 charon: 03[NET] received packet => 184 bytes @
> [ I removed the intermediate logs ]
> Jul 13 16:43:41 ikev2 charon: 03[NET] received packet: from
> 192.168.0.200 to 192.168.0.22
> Jul 13 16:43:41 ikev2 charon: 03[NET] waiting for data on sockets
> But, there is no more action.
> If I remove "charon.port" parameter and set 500 as IKE port in the
> remote VPN client configuration, the tunnel is established. Is there
> another parameter to add ? I did not use leftikeport.
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Open Source VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
-------------- next part --------------
A non-text attachment was scrubbed...
Size: 4275 bytes
Desc: S/MIME Cryptographic Signature
More information about the Users