ike: Use the original port when remote resolves to %any

When reestablishing the IKE_SA we should still use the original port when right resolves to %any as some implementations might not like initial IKE messages on port 4500 (especially for IKEv1).
2015-08-18 17:35:39 +02:00 · 2015-08-18 17:35:39 +02:00 · 2d14cb4d6c
parent bb1d9e454d
commit 2d14cb4d6c
1 changed files with 3 additions and 1 deletions
--- a/src/libcharon/sa/ike_sa.c
+++ b/src/libcharon/sa/ike_sa.c
@ -1240,7 +1240,9 @@ static void resolve_hosts(private_ike_sa_t *this)
 			set_other_host(this, host);
 		}
 		else
-		{
+		{	/* reuse the original port as some implementations might not like
+			 * initial IKE messages on other ports */
+			this->other_host->set_port(this->other_host, host->get_port(host));
 			host->destroy(host);
 		}
 	}