[strongSwan] PSK-IKEv2- DAVICI

rajeev nohria rajnohria at gmail.com
Mon Jun 19 16:57:01 CEST 2017 

Following capture is taken on responder side.  Can you give any idea what
could be wrong?

15[ENC] parsed IKE_AUTH request 1 [ IDi IDr AUTH N(USE_TRANSP) SA TSi TSr
N(MOBIKE_SUP) N(ADD_4_ADDR) N(MULT_AUTH) N(EAP_ONLY) ]
15[CFG] looking for peer configs matching 2001:2016:0:1::23e[2001:2016:0
:1::23e]...2001:2016:0:1::24b[2001:2016:0:1::24b]
15[CFG] peer config match local: 20 (ID_IPV6_ADDR ->
20:01:20:16:00:00:00:01:00:00:00:00:00:00:02:3e)
15[CFG] peer config match remote: 20 (ID_IPV6_ADDR ->
20:01:20:16:00:00:00:01:00:00:00:00:00:00:02:4b)
15[CFG] ike config match: 3100 (2001:2016:0:1::23e 2001:2016:0:1::24b IKEv2)
15[CFG]   candidate "rw", match: 20/20/3100 (me/other/ike)
15[CFG] selected peer config 'rw'
*15[IKE] tried 0 shared keys for '2001:2016:0:1::23e' -
'2001:2016:0:1::24b', but MAC matched*
*15[IKE] no shared key found for '2001:2016:0:1::23e' -
'2001:2016:0:1::24b'*
*15[IKE] peer supports MOBIKE*
*15[IKE] got additional MOBIKE peer address: 10.14.37.97*
*15[ENC] generating IKE_AUTH response 1 [ N(AUTH_FAILED) ]*
15[NET] sending packet: from 2001:2016:0:1::23e[4500] to
2001:2016:0:1::24b[4500] (80 bytes)
15[IKE] IKE_SA rw[2] state change: CONNECTING => DESTROYING



*Initiator*
*----------*
2001:2016:0:1::24b
Uses Davici code



   char str[] = "password";

      davici_new_cmd("load-shared", &dvReq);
      davici_kvf(dvReq, "type", "%s", "ike");
      davici_kv(dvReq,"data",str, strlen(str));
      davici_list_start(dvReq,"owners");


     davici_list_itemf(dvReq,"%s",ipAddrStr);
     davici_list_end(dvReq);

     err=davici_queue(dvConn, dvReq, reqcb, dvTester);

    err = davici_write(dvConn);










*Receptor*
----------------
2001:2016:0:1::23e
uses swanctl.conf See attached file.

i tried secret as password as well as 0spassword*.*
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170619/de5809cc/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: swanctl.conf
Type: application/octet-stream
Size: 10268 bytes
Desc: not available
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170619/de5809cc/attachment-0001.obj>

More information about the Users mailing list