On Fri, 25 Jul 2014, mxb wrote: > > Probably, but you can play with ipsec-config and send your results over here. > > On 24 jul 2014, at 13:23, Stefan Krueger <stadtki...@gmx.de> wrote: > > > In mailing.openbsd.misc, you wrote: > >> the public_ip in your ipsec.conf should be the external ip of your router, > >> not the openbsd box. > >> > >> other setup checks can be referred to the following article. > >> > >> http://undeadly.org/cgi?action=article&sid=20120427125048 > > > > Say I'm using PPPoE and my IP address changes every night, do I have > > to restart isakmpd + change the $public_ip in /etc/ipsec.conf every > > night, too?
Ok, restarting isakmpd is not necessary, but I have to change my $public_ip + ipssecctl -f /path/to/ipsec.conf every night... Another question, is there a way to have both "main auth" and "aggressive auth" in ipsec.conf? iOS 7.x seems to use "main auth", while Android 4.4.x seems to use "aggressive auth".
