[Swan] net-to-net for road warriors
Paul Wouters
paul at nohats.ca
Wed Jan 30 03:26:19 UTC 2019
On Tue, 29 Jan 2019, Paul Wouters wrote:
>> 133 "orion-arcade" #4: STATE_PARENT_I1: sent v2I1, expected v2R1
>
> You sent out the first packet, and never got a reply. Some possible
> causes:
Seems you might be on fedora, so:
> - Your packet got fragmented and failed to re-assemble. This is rare but
> possible (when using fedora's recent system wide crypto policy this
> unfortunately can happen)
if your /etc/ipsec.conf has a line with something like crypto-policies/back-ends/libreswan.config,
just comment it out and give it another try.
Paul
More information about the Swan
mailing list