[strongSwan] VPN for iOS 10, "deleting half open IKE_SA after timeout"
Klaus Bernpaintner
klaus at bernpaintner.com
Thu Mar 16 15:59:47 CET 2017
OK thank you, tried leftsendcert=always but same problem. I have not installed the cert on the clients. Is that necessary? I use username/password authentication of the clients and the clients don’t care about the server certificate.
> On Mar 16, 2017, at 3:40 PM, Tobias Brunner <tobias at strongswan.org> wrote:
>
> Hi Klaus,
>
>> What is missing to make it work?
>
> As documented on [1], try adding `leftsendcert=always`. If that doesn't
> work, the CA certificate is probably not installed (or trusted) on the
> clients.
>
> Regards,
> Tobias
>
> [1] https://wiki.strongswan.org/projects/strongswan/wiki/AppleClients
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20170316/8678b5e6/attachment.html>
More information about the Users
mailing list