I'm trying to set up a VPN tunnel between a win10 host and a ubuntu host. Below the configuration I have:
/etc/ipsec.conf
config setup
charondebug=1
uniqueids=yes
strictcrlpolicy=no
conn %default
ikelifetime=60m
keylife=20m
rekeymargin=3m
keyingtries=1
keyexchange=ikev2
esp=aes256-sha512
ike=aes256-sha512-modp4096
# connection to SSA
conn ssc-to-ssa
authby=secret
left=%defaultroute
leftid=192.168.1.32
leftsubnet=192.168.1.32/32
right=192.168.1.1
rightsubnet=0.0.0.0/0
keyingtries=0
ikelifetime=1h
lifetime=8h
dpddelay=30
dpdtimeout=120
dpdaction=restart
auto=start
esp=aes256-sha1-modp2048
ike=aes-sha2_256-modp2048,aes-sha1-modp2048,3des-sha1-modp2048
/etc/ipsec.secrets
192.168.1.32 192.168.1.1 : PSK "f1VCccuB/dq6FAyCY3fo/dql2gDACgYE1jdrAtFc5b0xngB44KpRqv7sq+Z1ACXa418xGSCQ9oQukGpW7b8mQw=="
login : EAP : "b64(pwd)"
When I attempt to connect from the Win10 machine to the Ubuntu machine, get the following trace (tcpdump on ubuntu with the above configuration) :
It seems like the machines could not agree on an encryption algorithm : "(n: doi=ipsec proto=isakmp type=NO-PROPOSAL-CHOSEN)" I dont know how to fix it though. Any idea ?
