Noel, Thanks for your reply. I am sorry I did not reply earlier, but your suggesttion worked.
cheers, sk On Tue, Aug 25, 2015 at 9:26 AM, Noel Kuntze <[email protected]> wrote: > > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA256 > > > Is there a way to turn off IKEv1 reauthentication from strongswan when > it is a responder? We tried using reauth=no, but it does not work as > expected. > > rekey=no > reauth=no > > Make sure you upgraded the firmware on the Juniper to a recent version. > Older versions of the SRX's firmware had broken IPsec implementations. > If the problem persists with a newer firmware, then it's probably another > broken implementation > on the juniper side. Also make sure you use a recent version of strongSwan. > > - -- > > Mit freundlichen Grüßen/Kind Regards, > Noel Kuntze > > GPG Key ID: 0x63EC6658 > Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658 > > -----BEGIN PGP SIGNATURE----- > Version: GnuPG v2 > > iQIcBAEBCAAGBQJV3JcgAAoJEDg5KY9j7GZYwg4P/i1hu0tX4uKSrO+lHlsYbz3K > onWeqGpru50LON7qyostL29WHf4pTXZjYxQFzt26GfFyvtiyjDrhdPFvBi/5aFsv > 030CvbdYJ2nkEYLbn/umcwc8Cs399CikPM60ohwlDNNN2+0fVEB6ZWcdZIyCU3Mg > e40rP3Li02raYhSwIDEMeL/DKcBlyq7V3kV9uYW1cr9Sw4HyIBksF9O3yu2yT7oa > 6yd+K1Udolj1SOOPrMQAdV3RmSW/0tu7CsUNXYha9O7W+ktk9l37lRdPqPBu6NdG > kBjOAd0ABG93iG9S+XIma22lpQgiU9a+1aW78IvIAFzZjYUJkahTOeurZybL3Evc > D7wacFETZmOLz7MnULThPkx97JbpsrjJxvBlC02kQcouSQ6HBgxj5eIgKJbs3ILR > Lfk8Z75uoLRhZC/uvH/ErDgS6+vFvrcUE4rkp7qNwJH09zcXVlP+H4vqPkCIooMk > w7ZSiX5vZpo6vPRywSNCnhotxaahytX7t9Hu5ckt5IZSHHskR2uYSDM+AUF4oHer > iSuMQhp2XaHsXUfMNAEy57A0UB80T91EJ/v7+sWqZx/yyfKcgewlzzT3+Xe6yEMi > RKF+1lKafhObV+Rv+X2nO5YKfM/Byhf/qxb3k6d///pZ5u8dcAcVZk+FLxcG36OW > JouFQwcn6l0HapYlfv3D > =k+s9 > -----END PGP SIGNATURE----- > >
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
