Re: [strongSwan] using ikev1 and ikev2 together with different conn parameter

Hi Ali Thank you very much for the quick response. I understand the difference. Thanks, 2016-03-08 22:45 GMT+09:00 Ali Masoudi : > Hi Nimo > > It has been a while that I worked with strongswan. The link you post is > talking about two different instances of charon with

Re: [strongSwan] using ikev1 and ikev2 together with different conn parameter

Hi Nimo It has been a while that I worked with strongswan. The link you post is talking about two different instances of charon with different configuration files. But with using one instance of charon, of course you can have both IKEv1 and IKEv2 connections. Regards Ali On Tue, Mar 8, 2016 at

Re: [strongSwan] seeking advice: pfs on creating a child_sa?

Hi Harrii, I can give you only an opinion of strongswan user but this is not an opinion of cryptographic expert. I think that using pfs for child_sa is not critical issue but it is better to use it if you can. If you do not use pfs for phase 2 crypto keys for this phase are derived from other