A few days ago I updated to 4.11.3-1-ARCH. After that my VPN access to our corporate network was broken. The connection is established and I can use UDP (i.e. DNS) and ICMP. All TCP connections I tried (ssh, smb, http...) failed. On the AUR page "MartinDiehl commented on 2017-05-25 19:57" the same error. https://aur.archlinux.org/packages/strongswan/ And I found a bug report on redhat bugzilla: https://bugzilla.redhat.com/show_bug.cgi?id=1458222
This patch solved it for me: https://patchwork.ozlabs.org/patch/772206/
A fix for the problem in the official kernel would be great.
Yes, would be great. Today I updated to 4.11.5 and the error is back again. Please fix in Kernel.
I am using 4.11.6-201.fc25.x86_64 which apparently has the patch above. Yet I still have an issue with strongswan/ipsec. ICMP, SSH work perfectly fine. However, in some cases (HTTP) I can make a connection to the remote server, the remote server receives my data, sends back a response, but the response packets are never received by my client.
(In reply to Raman Gupta from comment #4) > I am using 4.11.6-201.fc25.x86_64 which apparently has the patch above. > > Yet I still have an issue with strongswan/ipsec. ICMP, SSH work perfectly > fine. However, in some cases (HTTP) I can make a connection to the remote > server, the remote server receives my data, sends back a response, but the > response packets are never received by my client. I'll further note I have no idea why some TCP connections work (SSH) and others don't (HTTP).
Today I updated to 4.11.9-1-ARCH and the error seems to be fixed.