[Swan] cisco asa IKEv2 Negotiation aborted due to ERROR: The peer's KE payload contained the wrong DH group

Paul Wouters paul at nohats.ca
Tue May 14 13:44:56 UTC 2019

On Tue, 14 May 2019, Dmitry Melekhov wrote:

>>  Well, I mean connecting  edgeos strongswan to cisco asa.
>>  Looks like it works good, with mobike=no, set this on centos 7 libreswan
>>  too, need to wait more .
> It works OK for strongswan, but libreswan still have problems with Cisco ASA 
> ike2...

If you can give me a little more informationa about the setup and
libreswan version and logs of the failure, I can look into this


More information about the Swan mailing list