> IIRC there also was some patch set from somebody that implemented exactly
> what you ask.
> I can't find it right now, though.
https://github.com/strongswan/strongswan/pull/64
Regards,
Tobias
Hi,
That's not supported. You can maybe use
connections..children..policies to disable the installation of the
policies
and manage them outside of charon. IIRC there also was some patch set from
somebody that implemented exactly what you ask.
I can't find it right now, though.
Kind regards
Hello,
I currently have a racoon-based full IPsec mesh (i.e., all of our host-to-host
traffic is encrypted using trap-based transport policies). Racoon is long in
the tooth, and so I’m in the process of planning a migration to StrongSwan.
One thing I foresee in the near future is a need to