Closing the loop on this thread. Had the remote end switch to a Cisco ASA
(with no changes on our strongswan end) and the connection came up.
Here is the relevant log entry from the Cisco 3000 series end. I am
guessing we could have tried "nat_traversal = no" ?
56415 09/20/2016 08:56:57.190 SEV=3
Hi Mahesh,
> It seems that phase 1 IKE is working but not phase 2 ESP. I've tried
> different settings for ike= to no avail. Config and brief log below and
> extended log attached.
You should check the responder's log. It seems to immediately delete
the IKE_SA after receiving the Quick Mode req
Hi,
I am Trying to some some VPN connectivity tests between strongswan 5.3.5
and Cisco VPN 3000 concentrator. The same strongswan config works with a
Cisco ASA but not with the Cisco VPN 3000. I've attached the strongswan
side of the logs and config is below..
It seems that phase 1 IKE is working
