Holy crap I got it to work! What was the problem? Old crappy router at the far end.
All I had to do was force ikeV1 with a keyexchange = ikev1 and my existing config worked like a charm. Thanks everyone! - Matt > On Nov 17, 2016, at 12:50 AM, Mathew Marulla <mat...@me.com> wrote: > > Protocol 50 is open for ESP. Not using AH. > > Kinda moot since I have yet to get beyond IKE. > > Thanks! > > - Matt > >> On Nov 17, 2016, at 12:32 AM, Krishnanarayanan VR <krishna...@phonepe.com >> <mailto:krishna...@phonepe.com>> wrote: >> >> Ports 500 and 4500 are open to the remote routers in the EC2 security group. >> >> AH & ESP open too ? > > _______________________________________________ > Users mailing list > Users@lists.strongswan.org > https://lists.strongswan.org/mailman/listinfo/users
_______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users