[Swan-dev] why does ikev1-hostpair-01 fail?
D. Hugh Redelmeier
hugh at mimosa.com
Sat Jun 23 20:06:42 UTC 2018
| From: Paul Wouters <paul at nohats.ca>
| > Which notification error type? Maybe some XAUTH draft spells this
| > out. Failing that, RFC 2408 specifies 26 for ADDRESS-NOTIFICATION but
| > doesn't seem to suggest when it might be used or what it means.
| > Googling only gets me obsolete drafts. We don't currently generate
| > it.
|
| I guess there is INTERNAL_ADDRESS_FAILURE (36) or TEMPORARY_FAILURE (43)
|
| Note that according to RFC 7296, the first must result in the IKE SA
| being established while the second one does not.
This situation is IKEv1 and those codes are for IKEv2. Too bad.
More information about the Swan-dev
mailing list