-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA256 > Is there a way to turn off IKEv1 reauthentication from strongswan when it is > a responder? We tried using reauth=no, but it does not work as expected.
rekey=no reauth=no Make sure you upgraded the firmware on the Juniper to a recent version. Older versions of the SRX's firmware had broken IPsec implementations. If the problem persists with a newer firmware, then it's probably another broken implementation on the juniper side. Also make sure you use a recent version of strongSwan. - -- Mit freundlichen Grüßen/Kind Regards, Noel Kuntze GPG Key ID: 0x63EC6658 Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2 iQIcBAEBCAAGBQJV3JcgAAoJEDg5KY9j7GZYwg4P/i1hu0tX4uKSrO+lHlsYbz3K onWeqGpru50LON7qyostL29WHf4pTXZjYxQFzt26GfFyvtiyjDrhdPFvBi/5aFsv 030CvbdYJ2nkEYLbn/umcwc8Cs399CikPM60ohwlDNNN2+0fVEB6ZWcdZIyCU3Mg e40rP3Li02raYhSwIDEMeL/DKcBlyq7V3kV9uYW1cr9Sw4HyIBksF9O3yu2yT7oa 6yd+K1Udolj1SOOPrMQAdV3RmSW/0tu7CsUNXYha9O7W+ktk9l37lRdPqPBu6NdG kBjOAd0ABG93iG9S+XIma22lpQgiU9a+1aW78IvIAFzZjYUJkahTOeurZybL3Evc D7wacFETZmOLz7MnULThPkx97JbpsrjJxvBlC02kQcouSQ6HBgxj5eIgKJbs3ILR Lfk8Z75uoLRhZC/uvH/ErDgS6+vFvrcUE4rkp7qNwJH09zcXVlP+H4vqPkCIooMk w7ZSiX5vZpo6vPRywSNCnhotxaahytX7t9Hu5ckt5IZSHHskR2uYSDM+AUF4oHer iSuMQhp2XaHsXUfMNAEy57A0UB80T91EJ/v7+sWqZx/yyfKcgewlzzT3+Xe6yEMi RKF+1lKafhObV+Rv+X2nO5YKfM/Byhf/qxb3k6d///pZ5u8dcAcVZk+FLxcG36OW JouFQwcn6l0HapYlfv3D =k+s9 -----END PGP SIGNATURE----- _______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
