Hi Rodney,
> So I’m asking, is there a (legal) way to make use of strongSwan
> library in my applications, that respect the license software and the
> work involved behind ?
For most parts of the strongSwan source code a commercial license is
available. I'll contact you off-list with details.
R
Hi list,
I have a running config that must be updated because some of the routing is not
working.
The remote site is not managed by us so we can't easily change its
configuration (but it may not be necessary thought).
As of today, from the local server (10.15.130.5), we can ping the remote site
Hi
I am trying to configure ikev2 VPN on debian jessie using strongswan 5.2.1
I am trying specifically for my iphone.
I am able to authenticate to the server but after wards it fails to connect
Logs might be able to explain well about the problem.
So,Here is the log https://clbin.com/RyNBW
And the
if found that life time can be define in "iketime" parameter. however how
should i set life size in KBs?
because in example i see many parameters related to time.
ikelifetime=60m
keylife=20m
rekeymargin=3m
I need to set only two parameters which are required by our client
Hi Walter,
> With the patch, I hope to be able to see if it's one of "our" clients failing
> to connect because
> of e.g. fragments being dropped, or it's some scan attempt "from far away".
Enabling the `ike_name` option for the configured logger(s) might also
help as you could then correlate
Hi Yousuf,
> since i find the lifetime parameter however i can not understand where should
> i put lifesize in KB in ipsec config file.
http://lmgtfy.com/?q=strongswan+lifetime+bytes
Regards,
Tobias
___
Users mailing list
Users@lists.strongswan.org
h
Hi,
I need some assistance in implementing the below solution, i can't seem to
be able to find out how to use/enable kernel-libipsec+kernel-netlink.
https://wiki.strongswan.org/issues/1220
Strongswan version is
Linux strongSwan U5.3.5/K4.4.0-62-generic
Institute for Internet Technologies and Ap
Hi,
In StrongSwan Version 5.2.2.
We are facing problem in reaching traffic selectors when we use IPv6
TS(Single host IP) with /128 prefix BUT whereas when we use subnets, its
working fine.
Below is the kernel table output when we use /128 prefix for TS and with
/120 prefix.
Failure cas
We are trying to limit the set of algorithms to negotiate for IKE and ESP.
In IPSEC.CONF this is done by adding “!”.
If we apply the same “!” at the end of list, are get a message “loading
connection TEST failed : invalid value for: proposals, config discarded “
Here is an example:
vici_be
Hi,
There is a requriment from our client that we need a ipsec tunnel for
communication.
as per our experience with Openvpn we can do that very easily however IPsec
works very differently therefore i need your assistence.
here is the scenario
Computer[Strongswan]-[ipsec-tunnel]--ASA-550
10 matches
Mail list logo