[Swan] Dropping AUTH message containing INITIAL_CONTACT on OSX and Win10
paul at nohats.ca
Tue Jan 8 16:08:29 UTC 2019
On Tue, 8 Jan 2019, Derek Cameron wrote:
> I have found a solution to the problem of "missing payloads: AUTH" on
> Windows 10 clients. It is necessary to first set up the VPN in the
> Windows Settings GUI with VPN type of IKEv2. But then you must second
> open a Windows PowerShell and issue the cmdlet:
> Set-VpnConnection -Name "LibreSwan" -AuthenticationMethod "MachineCertificate"
Right. that changes the setting from EAP-TLS to Machine Certificate. I
will add this to the FAQ section. Thanks!
> But how do I get _all_ traffic from the Windows 10 client to be routed
> through the LibreSwan server?
Under properties and TCP I believe there is an option for "send all
traffic via VPN"
More information about the Swan