Hi Tobias, I have attached decoded IKEV2 AUTH packet for your reference. It seems ,Client is sending a valid identity payload with identification data to strongswan. But Strongswan is showing client identification information as NULL in the logs and sending authentication failure payload.
Please help me to solve this problem. Regards, Saravanan N On Thu, Oct 4, 2012 at 5:33 PM, Tobias Brunner <[email protected]>wrote: > Hi, > > > Oct 1 14:42:26 localhost charon: 13[ENC] parsed IKE_AUTH request 1 [ > > IDi CERT CERTREQ AUTH SA TSi TSr ] > > ... > > Oct 1 14:42:26 localhost charon: 13[CFG] looking for peer configs > > matching 35.0.0.2[%any]...35.0.0.1[] > > Your client seemed have sent an empty IDi payload (seen as [] above), > which will not match with the config where you configured > > > conn site-site > > ... > > rightid="C=CH, O=strongswan, CN=iss" > > ... > > What did you configure on the client? > > Regards, > Tobias >
IKEV2_decoded_packet.pcap
Description: Binary data
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
