[strongSwan] disable sending vendor id

Rajiv Kulkarni rajivkulkarni69 at gmail.com
Mon Jan 17 13:10:19 CET 2022


Hi

Actually, by default Strongswan is configured with NOT sending
Vendor_id....but you can make it explicit by enabling/uncommenting the
setting in "../Strongswan.d/charon.conf" file as below:

# Send strongSwan vendor ID payload
  send_vendor_id = no

hope this helps

thanks & regards
Rajiv




On Fri, Jan 14, 2022 at 3:10 PM Marco Berizzi <pupilla at hotmail.com> wrote:

> Hello everyone,
>
> kindly, I would like to know if there is a way to
> make strongswan not send the 'vendor id'.
> Unfortunately the windows 10 update kb5009543
> introduced this regression:
>
> "After installing this update, IP Security
> (IPSEC) connections that contain a Vendor ID might
> fail. VPN connections using Layer 2 Tunneling
> Protocol (L2TP) or IP security Internet Key
> Exchange (IPSEC IKE) might also be affected.
>
>
> To mitigate the issue for some VPNs, you can
> disable Vendor ID within the server-side
> settings.
>
> Note Not all VPN servers have the option to
> disable Vendor ID from being used.
>
> We are presently investigating and will provide an
> update in an upcoming release."
>
> Thanks in advance
> Marco
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20220117/d9583652/attachment.html>


More information about the Users mailing list