All,
Is there a version of the mark_updown script which supports IPv6 in addition to
v4 somewhere?
-Jeremy
--
Jeremy Beker - goth...@confusticate.com
http://www.confusticate.com
Condensing fact from the vapor of nuance.
smime.p7s
Description: S/MIME Cryptographic Signature
ly by me on one system (Fedora), so your
mileage will vary. Enjoy!
http://blogs.confusticate.com/jeremy/2013/07/02/logwatch-script-for-strongswan/
-Jeremy
--
Jeremy Beker - goth...@confusticate.com
http://www.confusticate.com
Condensing fact from the vapor of nuance.
smime.p7s
Description: S
hope that answers your question.
-Jeremy
--
Jeremy Beker - goth...@confusticate.com
http://www.confusticate.com
Condensing fact from the vapor of nuance.
smime.p7s
Description: S/MIME Cryptographic Signature
___
Users mailing list
Users@lists.strongswan
rtificates.
Brian,
I'm afraid you have caught me; I don't know. I have never noticed that it
doesn't but I have also not been paying attention to it either. Most of my use
cases do not involve long duration connections. I'll see if I can do some
testing and see what happ
atest iOS (although it has worked for a
while).
-Jeremy
--
Jeremy Beker - goth...@confusticate.com
http://www.confusticate.com
Condensing fact from the vapor of nuance.
smime.p7s
Description: S/MIME Cryptographic Signature
___
Users mailing list
e a supported way to get this data? I can't find a way, but I wanted to
ask before I look at more in-depth changes.
Thanks!
-Jeremy
--
Jeremy Beker - goth...@confusticate.com
http://www.confusticate.com
Condensing fact from the vapor of nuance.
smime.p7s
Description: S/MIM
ed at them?
-Jeremy
On 06/04/2013 09:43 AM, Jeremy Beker wrote:
Martin,
Thank you for your test. I have confirmed that the problem does not appear to
be within StrongSwan. Unfortunately the problem appears to be within the way
the linux kernel (3.9.4 in my case) and iptables identify the compr
commend to start a network sniffer on the
involved hosts to see where exactly the packets get lost.
Regards
Martin
--
Jeremy Beker - goth...@confusticate.com
http://www.confusticate.com
Condensing fact from the vapor of nuance.
smime.p7s
Descri
uniper to juniper vpns,
juniper and cisco to end client, and openbsd. So I'm not completely new to
this, but I'm baffled by what I see here.
Thank you
-Jon
___
Users mailing list
Users@lists.strongswan.org
https://lists.strongsw
the compression SA bundle.
>> >
>> > It seems that these restrictions don't apply anymore with the way we
>> > handle those SA bundles now. In my testing it seems that compression
>> > works fine both over connections with forceencaps and over NAT. You ma
have the client side request its inside tunnel address from my server.
-Jeremy
On 06/29/2012 15:06, Jeremy Beker wrote:
> I am working to resolve the following error (background information
> below):
>
> ===
> cannot respond to IPsec SA request because no connection is known for
> 0
nfusticate, CN=VPN CA"...%any
000 "ios"[12]: ike_life: 10800s; ipsec_life: 3600s; rekey_margin:
540s; rekey_fuzz: 100%; keyingtries: 3
000 "ios"[12]: policy: ENCRYPT+TUNNEL+XAUTHRSASIG+XAUTHSERVER; prio:
0,24; interface: p2p2;
000 "ios"[12]: newest ISAK
12 matches
Mail list logo
