[strongSwan] Mobike on strongswan MAC OSX Client
pankaj razdan
pankajrazdan at yahoo.com
Tue Jul 28 19:30:33 CEST 2020
Hello,
I am facing issue with strongswan MAC OS X client which I have compiled from source.
version--------------Starting IKE charon daemon (strongSwan 5.7.2dr2, Linux 4.15.0-112-generic, x86_64)
---------------
I am able to connect to server in road warrior scenario. When I switch wifi on my MAC laptop, source outer IP address (192.168.1.5) does not change for IKE SA.
Here is the log what happens after I switch WiFi connectionl 28 19:57:41 03[NET] error writing to socket: Can’t assign requested addressJul 28 19:57:41 10[KNL] ExC: 192.168.1.112 appeared on en0Jul 28 19:57:41 10[KNL] ExC: en0 is up amd changedJul 28 19:57:41 10[IKE] ExC: Schedule Route ReinstallJul 28 19:57:41 09[IKE] ExC: reinstall startJul 28 19:57:41 10[KNL] creating roam job due to address/link changeJul 28 19:57:41 10[IKE] <exd-1|1> ExC: Roaming startJul 28 19:57:41 10[IKE] <exd-1|1> ExC: Check current pathJul 28 19:57:41 10[KNL] <exd-1|1> using 192.168.1.5 as address to reach 32.2.4.18Jul 28 19:57:41 10[IKE] <exd-1|1> keeping connection path 192.168.1.5 - 32.2.4.18Jul 28 19:57:41 10[IKE] <exd-1|1> sending address list update using MOBIKEJul 28 19:57:41 10[IKE] <exd-1|1> queueing IKE_MOBIKE taskJul 28 19:57:41 10[IKE] <exd-1|1> EXC: task_manager initiateJul 28 19:57:41 10[IKE] <exd-1|1> activating new tasksJul 28 19:57:41 10[IKE] <exd-1|1> activating IKE_MOBIKE taskJul 28 19:57:41 10[IKE] <exd-1|1> ExC: start msg generation (me 192.168.1.5)Jul 28 19:57:41 10[KNL] <exd-1|1> using 192.168.1.5 as address to reach 32.2.4.18Jul 28 19:57:41 10[IKE] <exd-1|1> EER 1: IKE-SA-IDJul 28 19:57:41 10[IKE] <exd-1|1> EER: SA-ID: 1, My Host 192.168.1.5[4500], Other 32.2.4.18[4500], SPI 000000000ae53452Jul 28 19:57:41 10[IKE] <exd-1|1> EER: CHILD SA: cnt 2Jul 28 19:57:41 10[ENC] <exd-1|1> generating INFORMATIONAL request 11 [ N(ADD_4_ADDR) N(ADD_4_ADDR) ]Jul 28 19:57:41 10[KNL] <exd-1|1> using 192.168.1.5 as address to reach 32.2.4.18Jul 28 19:57:41 10[NET] <exd-1|1> sending packet: sock: from 192.168.1.5[4500] to 32.2.4.18[4500] (96 bytes)Jul 28 19:57:41 03[NET] error writing to socket: Can’t assign requested addressJul 28 19:57:41 03[NET] error writing to socket: Can’t assign requested addressJul 28 19:57:42 03[NET] error writing to socket: Can’t assign requested addressJul 28 19:57:42 03[NET] error writing to socket: Can’t assign requested addressJul 28 19:57:42 03[NET] error writing to socket: Can’t assign requested address=========================Please note that 192.168.1.5 is the earlier IP address with which IKE could be established.
list-sas output
ESTABLISHED, IKEv2, d84a1ea80c9f9b35_i* 84744da70ab07c50_r local 'pan.r at ex.net’ @ 192.168.1.5[4500] [172.4.0.2] remote ‘exd.ex.net’ @ 32.2.4.18[4500] AES_CBC-128/HMAC_SHA2_256_128/PRF_HMAC_SHA2_256/CURVE_25519 established 53s ago, rekeying in 13127s, reauth in 84265s exd: #6, reqid 5, INSTALLED, TUNNEL-in-UDP, ESP:AES_CBC-128/HMAC_SHA2_256_128 installed 55s ago, rekeying in 3302s, expires in 3907s in 943a60be, 385 bytes, 5 packets, 49s ago out c504033d, 322 bytes, 5 packets, 49s ago local 172.4.0.2/32 remote 192.168.124.0/24 exd-0: #7, reqid 6, INSTALLED, TUNNEL-in-UDP, ESP:AES_CBC-128/HMAC_SHA2_256_128 installed 49s ago, rekeying in 3191s, expires in 3911s in 7072d8c3, 104160 bytes, 160 packets, 16s ago out c1ba4664, 86131 bytes, 345 packets, 0s ago local 172.4.0.2/32 remote 192.168.125.100/32
load-conns outputexd: IKEv2, no reauthentication, rekeying every 14400s, dpd delay 200s
local: %any remote: exe4oho.exium.net local EAP_EXPANDED authentication: id: pan.r at ex.net remote public key authentication: id: exd.ex.net exd-0: TUNNEL, rekeying every 3600s, dpd action is clear local: dynamic remote: 192.168.125.100/32 exd: TUNNEL, rekeying every 3600s, dpd action is clear local: dynamic remote: 192.168.124.0/24
Please let me know if any other information is required
Thanks,Pankaj
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20200728/26ec8d68/attachment.html>
More information about the Users
mailing list