Ping a Specific Port

Question

sunknudsen

Asked: 2019-03-16 08:43:53 +0800 CST2019-03-16 08:43:53 +0800 CST 2019-03-16 08:43:53 +0800 CST

How to check which crypto a strongSwan client is using?

772

When you configure an IKEv2/IPsec client on iOS or macOS using the built-in VPN client, you can’t configure which crypto the client uses (unless you are using deployment profiles). So how can you know which crypto is used to encrypt the VPN traffic?

1 Answers

Voted

sunknudsen · Answer 1 · 2019-03-16T09:03:05+08:00

Best Answer

sunknudsen

2019-03-16T09:03:05+08:002019-03-16T09:03:05+08:00

If you have access to the server, you can start strongSwan using the sudo ipsec restart --nofork command (great for debugging).

This will start strongSwan without forking it to the background as a daemon.

Then, open another window and run sudo ipsec stroke loglevel cfg 2.

This will enable strongSwan config logging with just enough debugging.

Go back to the first window and connect your iOS or macOS VPN client.

Look for the selected proposal line.

Another option is to run ipsec statusall on the server as suggested by @ecdsa.

0

How to check which crypto a strongSwan client is using?

Can you pass user/pass for HTTP Basic Authentication in URL parameters?

Ping a Specific Port

Check if port is open or closed on a Linux server?

How to automate SSH login with password?

How do I tell Git for Windows where to find my private RSA key?

What's the default superuser username/password for postgres after a new install?

What port does SFTP use?

Command line to list users in a Windows Active Directory group?

What is a Pem file and how does it differ from other OpenSSL Generated Key File Formats?

How to determine if a bash variable is empty?