[strongSwan] Changing IKE port
Tobias Brunner
tobias at strongswan.org
Wed Jul 13 18:15:34 CEST 2016
Hi Eric,
> Jul 13 16:43:41 ikev2 charon: 03[NET] received packet => 184 bytes @
> 0xafb379f0
> [ I removed the intermediate logs ]
That's unfortunate, because it would have been interesting to see
whether the client added a non-ESP marker to the packet or not (four
zero bytes). If neither port is 500 charon expects that to be the case,
if not the packet is silently discarded after it has been read from the
socket. As in:
> Jul 13 16:43:41 ikev2 charon: 03[NET] received packet: from
> 192.168.0.200[6701] to 192.168.0.22[6701]
> Jul 13 16:43:41 ikev2 charon: 03[NET] waiting for data on sockets
Regards,
Tobias
More information about the Users
mailing list