[Swan] Can you elaborate on this ?
Paul Wouters
pwouters at redhat.com
Wed Jan 23 16:14:29 EET 2013
On Wed, 23 Jan 2013, Philippe Vouters wrote:
> When comparing your Wireshark trace with a corresponding Wireshark trace
> running Shrew VPN client, the problem is indeed visible on the second
> Aggressive packet sent by Netscreen. It has flags=0 when Shrew sets it to 1.
> Bit 1 of flags means encrypted.
>
> So there is definitely a bug on Netscreen side not respecting the RFCs. If
> you need information onto the whole set of RFCs, go to
> http://www.shrew.net/static/help-2.1.x/vpnhelp.htm?IPSecurity.html
It is NOT a bug. If there is a misconfiguration, then this is the
expected method to convey an error condition by the netscreen!
Paul
More information about the Swan
mailing list