Unfortunately, if you are using Ubuntu 16.04 LTS, there is no version of 5.5.0 built for Ubuntu 16.04 that I know of. The problem is due to a message sent by the firewall after the username is requested but before the password is requested. StrongSwan 5.3.5 does not work with SonicWall IKEv1/XAuth firewalls:Īlthough the bug is for IKEv1, since you are using XAUTH, it may affect you as well. You may also be affected by the following bug. You are asking for modp2048, which is DH Group 14, but the SonicWall is requesting modp1024, which is DH Group 2. So, how can I debug this connection or how can establish it?įirst, there is a mismatch in your IKE settings. Retransmit 5 of request with message ID 1Įstablishing connection 'name-to-connection' failed Retransmit 4 of request with message ID 1 Retransmit 3 of request with message ID 1 Retransmit 2 of request with message ID 1 Retransmit 1 of request with message ID 1 No IDi configured, fall back on IP addressĪuthentication of '192.168.0.eee' (myself) with pre-shared keyĮstablishing CHILD_SA name-for-connection Sending cert request for "C=NL, O=Example Company, CN=strongSwan Root CA" Local host is behind NAT, sending keep alives Received packet: from to 192.168.0.eee (317 bytes) Initiating IKE_SA name-for-connection to Peer didn't accept DH group MODP_2048, it requested MODP_1024 Received packet: from to 192.168.0.eee (38 bytes) When running the command sudo ipsec up name-for-connection I get the following output: initiating IKE_SA name-for-connection to My /etc/nf is as follow conn the /etc/cret has the entries: : PSK "Sh4r3d53cr37" University of Applied Sciences Rapperswil, Switzerland Institute for Internet Technologies and Applications In Linux I would use StrongSwan: local> ipsec -version Following are the instructions to connect using that client: mc21-colombia I can connect from a Windows Machine using the SonicWall Global VPN client, which uses a shared secret. I am trying to connect to a SonicWall VPN using StrongSwan from Linux (Ubuntu).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |