[strongSwan] StrongSwan not responding to DPD messages when modeconfig=push.
Tobias Brunner
tobias at strongswan.org
Mon Oct 31 10:32:16 CET 2016
Hi,
> 1. Why does strongswan wait for the response in spite of assigning
> the IP requested by client ?
You configured `modeconfig=push`, so strongSwan pushed config attributes
to the client and waits for a response. If that's not what the client
expects change the config to `modeconfig=pull` so the client is expected
to be the one requesting the attributes.
> 2. Sometimes , shrew soft client is reporting "Invalid message from
> the gateway" for this transaction request HASH CPS(ADDR DNS) and
> closing the connection ?
Obviously, the two peers don't agree on the mode to be used.
> 3. Is this an interoperability issue ? Is Shrew soft client not
> interoperable with Mode-Config standard ?
No, a misconfiguration.
Regards,
Tobias
More information about the Users
mailing list