I did not... Ended up going with strongswan and the android app. (ie. I
abandoned the native IPSec client.)
- Chee Eng
On Fri, 10 Aug 2018, 11:49 AM Paul Wouters, wrote:
> On Wed, 25 Jul 2018, Tan Chee Eng wrote:
>
> > I don't think that's the problem. I see the following lines in the log:
> >
On Wed, 25 Jul 2018, Tan Chee Eng wrote:
I don't think that's the problem. I see the following lines in the log:
"xauth-rsa"[1] {CLIENT IP} #2: STATE_QUICK_R1: sent QR1, inbound IPsec
SA installed, expecting QI2 tunnel mode {ESP/NAT=>0x0dcbfd24
<0x2ddf4c55 xfrm=AES_CBC_256-HMAC_SHA2_512_256 NAT
Hi Paul,
I don't think that's the problem. I see the following lines in the log:
"xauth-rsa"[1] {CLIENT IP} #2: STATE_QUICK_R1: sent QR1, inbound IPsec
SA installed, expecting QI2 tunnel mode {ESP/NAT=>0x0dcbfd24
<0x2ddf4c55 xfrm=AES_CBC_256-HMAC_SHA2_512_256 NATOA=none NATD={CLIENT
IP}:31360 DPD
Most common android esp flow issue is using its bad sha2_256. Ensure your esp=
line does not include it ?
Sent from my phone
> On Jul 24, 2018, at 06:04, Tan Chee Eng wrote:
>
> Hi,
>
> I'm following this example to set up libreswan on my server:
> https://libreswan.org/wiki/VPN_server_for_re