/strongswan/wiki/SqlLite
Regards
Andreas
On 08/22/2011 05:35 PM, nima chavooshi wrote:
Hi
I have setup IPsec successfully between 2 point and everything is OK.
But I want to know, Is it possible that all config file to be read
from sqlite? for example, ipsec.conf ? of course I have read
Hi
Before anything,thanks to anyone that contributes to this project.
How bandwidth can StrongSwan handle?in fact I want to know maximum
bandwidth that strongswan can handle.
Thanks in advance
___
Users mailing list
Users@lists.strongswan.org
, nima chavooshi wrote:
Hi
Before anything,thanks to anyone that contributes to this project.
How bandwidth can StrongSwan handle?in fact I want to know maximum
bandwidth that strongswan can handle.
Thanks in advance
Hi
Again,Before anything I appreciate all of contributors on this mailing list
and SotringSwan community.
I have read definition of MOBIKE, but I did not understand it very well. May
everyone explain this feature more for deep understanding?and where we can
or should use this feature?
Thanks for
Hi
I have setup strongswan and I could establish secure connection with 2 nodes
without any problem.
My connection config is :
conn net-net
left=30.0.2.2
leftcert=peer1.crt
leftsubnet=0.0.0.0/0
rightsubnet=30.0.2.0/24
right=30.0.2.1
leftid=C=US, ST=City, L=Teh,
Hi
Before any question, I thank to anybody that contributes on this mailing
list and special thanks to StrongSwan's developers.
What authentication methods can I use for establish net to net secure
connection in StrongSwan?
Thanks in advance
___
Users
is not defined in the certificate
then automatically the subject DN is assumed as a default.
As a responder you can define rightid=%any, in that case any
peer with a trusted and non-revoked certificate will be accepted.
Regards
Andreas
On 09/25/2011 10:40 AM, nima chavooshi wrote:
Hi
I have
Hi
In some documents I have read about diffie hellman and RSA. according those
documents usage of diffie hellman and RSA is equal, in fact, those method
are used for key exchange.but must only one method to be selected.
In StrongSwan, I have to set both RSA and diffie hellman in ike or esp
values.
Hi
I have found some details on different crypto library on this page:
http://wiki.strongswan.org/projects/strongswan/wiki/IKEv2CipherSuites
On this page there some explanation about supported crypto library as below:
x default built-in crypto library
o OpenSSL crypto library
g Gcrypt crypto
Hi
Then, why do i have to set certification on conn conf section for any
connection? RSA method in strongswan only is used in authentication not key
exchange?Am I right ?
Eexcuse me for these dummy questions.
On Mon, Sep 26, 2011 at 8:58 AM, nima chavooshi nima0...@gmail.com wrote:
Hi
...@strongswan.org
IP:11.22.33.44
(given in openssl.cnf notation) which saves a lot of typing work and
helps to eliminate errors.
Regards
Andreas
On 09/25/2011 02:58 PM, nima chavooshi wrote:
Hi
Thanks a lot for your quick reply.
Excuse me for my dummy question.I am some confused.
May you give
hi
first of all excuse me for dummy question.
When I started to reading about IPSsec, i have understand that ike is for
generate and exchange of SA and other critical information for creating
tuunel.
Is it possible that I generate those needed information manually and put on
endpoint tunnel in
...@woitasen.com.arwrote:
On Sat, Oct 1, 2011 at 2:30 PM, nima chavooshi nima0...@gmail.com wrote:
hi
first of all excuse me for dummy question.
When I started to reading about IPSsec, i have understand that ike is for
generate and exchange of SA and other critical information for creating
tuunel
Hi
In our scenario, I need to mark packets so that those marked packets to be
transmitted via one tunnel. But I do not want set rightsubnet or leftsubnet.
my config is:
conn net-net
left=30.0.2.2
leftcert=peer1.crt
#leftsubnet=0.0.0.0/0
#rightsubnet=50.0.2.0/24
Hi
Is it possible that I forward layer 2 packet in ipsec tunnel??
Thanks in advance
___
Users mailing list
Users@lists.strongswan.org
https://lists.strongswan.org/mailman/listinfo/users
Hi
Is there any protocol in order to get certificate from that? If so,
what protocol?
Does strongswan support this method in order to get certificate from
one CA server to get peer's certificate?
Thanks in advance
___
Users mailing list
16 matches
Mail list logo