[Swan] Dropping AUTH message containing INITIAL_CONTACT on OSX and Win10

Paul Wouters paul at nohats.ca
Tue Jan 8 16:08:29 UTC 2019

On Tue, 8 Jan 2019, Derek Cameron wrote:

> I have found a solution to the problem of "missing payloads: AUTH" on
> Windows 10 clients. It is necessary to first set up the VPN in the
> Windows Settings GUI with VPN type of IKEv2. But then you must second
> open a Windows PowerShell and issue the cmdlet:
> Set-VpnConnection -Name "LibreSwan" -AuthenticationMethod "MachineCertificate"

Right. that changes the setting from EAP-TLS to Machine Certificate. I
will add this to the FAQ section. Thanks!

> But how do I get _all_ traffic from the Windows 10 client to be routed
> through the LibreSwan server?

Under properties and TCP I believe there is an option for "send all
traffic via VPN"


More information about the Swan mailing list