Does anyone have a strongswan ipsec.conf file that works with Perfect Privacy that they are willing to share? My longer term aim is to use strongswan on an OpenWrt router. As an intermediate step I am trying to use strongswan from behind that router. I already have Windows 10 Enterprise systems using VPN Manager with IPsec running successfully behind that router. I have used the ipsec.conf for carol from the strongswan "Test ikev2/rw-eap-mschapv2-id-rsa" as a starting point and am attempting to use this: Code: # /etc/ipsec.conf - strongSwan IPsec configuration file config setup conn %default ikelifetime=60m keylife=20m rekeymargin=3m keyingtries=1 keyexchange=ikev2 conn perfect-privacy left=192.168.1.23 leftfirewall=yes leftauth=eap eap_identity=carol right=london.perfect-privacy.com rightauth=pubkey rightid="C=CH, ST=Zug, O=Perfect Privacy, CN=Server_london.perfect-privacy.com" rightsubnet=%any auto=add Note that I have substituted "carol" with my actual Perfect Privacy username and used that and my password in /etc/ipsec.secrets. I also changed "left" to the IPv4 address of the particular Linx system. I have tried this with two differrent Linux systems: Ubuntu 16.10 (Yakkety Yax) / strongswan 5.3.5-1 openSUSE Tumbleweed (VERSION="20161226) / strongswan 5.3.5-1.1 Both fail with "IKE_AUTH response 1 [ N(AUTH_FAILED) ]" ... Any suggestions as to what I am doing wrong?