[Swan] VPN server on Debian 10 using L2TP with IPSEC PSK not working
Paul Wouters
paul at nohats.ca
Mon Nov 22 22:28:18 EET 2021
On Nov 22, 2021, at 15:08, Mirsad Goran Todorovac <mirsad.todorovac at alu.hr> wrote:
>
> Dear Mr. Wouters,
>
> Your modification works! It was my error, I made a wrong change for left=127.0.0.1 in place of left=%defaultroute
Awesome !
> Now it works.
> I have seen that IKEv2 works both in Windows 7 and on my Galaxy Android, so I will set up that too, now that you have encouraged me with this setting working!
Let us know if it works with the galaxy android natively - I haven’t heard much feedback yet from the new android.
Paul
>
> Thank you very much for your time!
>
> Kind regards,
> Mirsad Todorovac
>
>> On 11/22/2021 6:51 PM, Paul Wouters wrote:
>>> On Mon, 22 Nov 2021, Mirsad Goran Todorovac wrote:
>>>
>>> I have made the suggested correction, and now the error message is different:
>>>
>>> The new error log is available at https://domac.alu.hr/mtodorov/xl2tpd-ipsec-20211122-3.log
>>
>>
>>> What strikes at first is the line:
>>>
>>> Nov 22 18:06:09.628375: packet from 89.172.45.78:500: initial Main Mode message received on 161.53.235.3:500 but no connection has been authorized with policy PSK+IKEV1_ALLOW
>>
>> Did you not confiure PSK (authby=secret) on the server ?
>>
>>
>>> I will try IKEv2, but does it connect from both Windows 10 and Android just like this old setup?
>>
>> Old Android's need the strongswan app to use IKEv2. The latest android
>> should have support for IKEv2 natively.
>>
>> Paul
More information about the Swan
mailing list