JMC
Reputation: 393
AWS Site to Site VPN Openswan Issue
I am doing a pretty straightforward exercise by setting up an IPSec VPN with AWS. I am using AWS Linux 2 Image and Openswan 3.25.
Error: Failed to add connection "Tunnel1", esp="aes128-sha1;modp1024" is invalid: ESP encryption algorithm 'aes' is not supported.
Any idea is appreciated.
Upvotes: 1
Views: 1093
Answers (1)
MHausner
Reputation: 65
After fiddling with this for quite a bit, we found a solution to it, but I wouldn't consider it a permanent solution yet.
Change the /etc/ipsec.d/aws.conf with the following:
phase2alg=aes_gcm
ike=aes256-sha1;modp1024
I hope it helps.
Upvotes: 2
Related Questions
- AWS - Strongswan :: How to make clients from subnets communicate?
- Unable to Setup an site-to-site vpn connection between strongswan and AWS VPN Gateway
- Libreswan Route-based VPN
- Strongswan not establishing connection
- AWS site-to-site VPN high availability
- Openswan on EC2 VPC
- Site to site OpenSWAN VPN tunnel issues with AWS
- Amazon VPC to VPC connection
- Site to Site VPN connection between TMG and AWS keeps dropping
- How to use IPSec / Openswan with Amazon's Virtual Private Cloud (VPC) and EC2?