User profile for user: si8001
si8001 Author
User level: Level 1
14 points

IKEv2 profile broken since Sonoma 14

Hello,

Since macOS Sonoma 14.0, the following IKEv2 VPN profile doesn't work anymore. It was fine with Monterey and Ventura, as this VPN configuration was specifically created for Apple devices. The server is iked on OpenBSD 7.3, we have no problems with Ventura.


Here the profile :


https://paste.chapril.org/?3a0fbc0e776483dc#Dop7CqUjJ21e55kcPfEfyDHyAf78VBz5RQ7Znm1oJLf5


As you can see, working versions are written in the profile.


Here the server logs :


ikev2_resp_recv: failed to negotiate IKE SA
ikev2_log_proposal: IKE #1 ENCR=AES_GCM_16-256
ikev2_log_proposal: IKE #1 PRF=HMAC_SHA2_256
ikev2_log_proposal: IKE #1 DH=ECP_256
ikev2_log_proposal: IKE #2 ENCR=AES_GCM_16-256
ikev2_log_proposal: IKE #2 PRF=HMAC_SHA2_256
ikev2_log_proposal: IKE #2 DH=MODP_2048
ikev2_log_proposal: IKE #3 ENCR=AES_CBC-256
ikev2_log_proposal: IKE #3 PRF=HMAC_SHA2_256
ikev2_log_proposal: IKE #3 INTEGR=HMAC_SHA2_256_128
ikev2_log_proposal: IKE #3 DH=ECP_256
ikev2_log_proposal: IKE #4 ENCR=AES_CBC-256
ikev2_log_proposal: IKE #4 PRF=HMAC_SHA2_256
ikev2_log_proposal: IKE #4 INTEGR=HMAC_SHA2_256_128
ikev2_log_proposal: IKE #4 DH=MODP_2048
ikev2_add_error: NO_PROPOSAL_CHOSEN


It seems proposal settings are very limited and do not match what is specified in the profile. It's very urgent, as our clients can't update their systems.

Posted on Sep 27, 2023 12:25 AM

Reply
Question marked as Top-ranking reply
User profile for user: mvg009
mvg009
User level: Level 1
13 points

Posted on Oct 29, 2023 11:57 PM

It seems to be the case only with the new ikev2 vpn profiles created after Sonoma upgrade. The old profiles installed before continue to work fine.

For new profiles, Sonoma will not consider the SecurityAssociationParameters and force to use:


  Opportunistic PFS = YES

  DH = (

    RandomECP256,

  )

  Lifetime = 1800


After 24 minutes:

Client side:

CREATE_CHILD_SA MID=15 Initiator Request

CREATE_CHILD_SA MID=15 Responder Response


Server side:

received proposals: ESP:AES_GCM_16_256/ECP_256/NO_EXT_SEQ, ESP:AES_GCM_16_256/NO_EXT_SEQ


For me the solution was changing the Phase2 PFS Group to 19 (ECP_256) on server and also for Windows clients profile.

View in context
40 replies
User profile for user: si8001
si8001 Author
User level: Level 1
14 points

Nov 10, 2023 12:52 AM in response to JoshHibschman

As I told earlier in the thread, IKEv2 connection works on 14.1.1 after modifying OpenBSD iked and client profile, with the following settings :


Authentication hmac-sha2-256

Cipher aes-256

Pseudo-random function hmac-sha2-256

Diffie-Hellman group MODP2048 (14)


Tried to play with Diffie-Hellman group settings and I was unable to connect. As the server shows it in the logs (in my first message), supported PRF hashes and Diffie-Hellman groups are far more limited in Sonoma, compared to before.

I do not consider this issue as solved, as the settings here are less secure. It is a temporary trick so people can update macOS and use IKEv2.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

IKEv2 profile broken since Sonoma 14

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up