Hello,
Leftcert configures the certificate that should be used to authenticate the
local peer to the remote peer. Read the manual for the configuration file. It
explains it.
Kind regards
Noel
Am 23.10.18 um 19:39 schrieb bls s:
>
> I’m using the new swanctl strongSwan support, but I’m pretty
Hi Tobias,
Thanks. With the newer boringssl included with Android P, the OPENSSL_malloc()
and OPENSSL_free() are no longer compatible with the generic malloc() and
free() used in Strongswan. Objects allocated in Strongswan (often used in
chunk_t) can be freed by boringssl functions that call
I’m using the new swanctl strongSwan support, but I’m pretty sure that the
certs item in a connection’s local description is the same as leftcert.
My understanding is that the cert is used by the client to validate that it’s
talking to the server that it thinks it connected to. Obviously the CA
Hi
Sorry for the badly formulated request.
I solve my problem.
The ipsec configuration file was the following :
config setup
charondebug="all"
uniqueids=yes
strictcrlpolicy=no
conn %default
conn tunnel
leftupdown=/etc/strongswan.d/updown.sh
leftid=petit
Hi,
can anybody explain me why leftcert is needed in ikev2? What is it used for? I
couldn't find an explanation about it.
Thanks in advance!
--
This email was Malware checked by UTM 9. http://www.sophos.com
Also, when I took the app from Google store - it doesn't reconnect after the
reboot.The scenario:1. VPN get connected2. work with browser3. restart of
device4. strongswan app shows "No active VPN"5. browser exit directly to the
internetSamsung Galaxy S7
On Tuesday, October 23, 2018, 12:36:4
I used the strongswan app that I built from sourcesgit clone
http://git.strongswan.org/strongswan.git
Is it correct place to take sources ? If not - is there a newer place ?In the
sources the version is 2.0.1. But apk latest is 2.0.2.
BuildConfig.java
VERSION_NAME = "2.0.1"
Thanks, Stella
Hi Peter,
> I tried using the strongswan version of openssl from strongswan.org:
>
> https://git.strongswan.org/?p=android-ndk-openssl.git;a=summary
>
> but it seems this version of openssl is old and does not have some
> functions used by strongswan 5.6.1:
Yeah, that repository is not really m