[strongSwan] policy mismatch
Tobias Brunner
tobias at strongswan.org
Wed May 2 10:11:14 CEST 2018
> AFAIK, strongSwan accepts the first proposed algorithm that is also
> configured configured locally.
The behavior depends on the charon.prefer_configured_proposals setting
(enabled by default). If enabled, the first local proposal accepted by
the client's proposals is used (similarly for the algorithms in the
proposals, where the local order is preferred), if it's disabled, the
first proposal sent by the client that is accepted the local proposals
will be selected (again, similar for the algorithms in the proposals).
Regards,
Tobias
More information about the Users
mailing list