Holy crap I got it to work! What was the problem? Old crappy router at the far end.
All I had to do was force ikeV1 with a keyexchange = ikev1 and my existing config worked like a charm. Thanks everyone! - Matt > On Nov 17, 2016, at 12:50 AM, Mathew Marulla <[email protected]> wrote: > > Protocol 50 is open for ESP. Not using AH. > > Kinda moot since I have yet to get beyond IKE. > > Thanks! > > - Matt > >> On Nov 17, 2016, at 12:32 AM, Krishnanarayanan VR <[email protected] >> <mailto:[email protected]>> wrote: >> >> Ports 500 and 4500 are open to the remote routers in the EC2 security group. >> >> AH & ESP open too ? > > _______________________________________________ > Users mailing list > [email protected] > https://lists.strongswan.org/mailman/listinfo/users
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
