New commits:
commit 9f8b57c24471c41fdff93180f1a875ea07a71605
Author: Andrew Cagney
Date: Thu Sep 15 16:25:43 2022 -0400
testing: inline conn {westnet-east,west-eastnet}
___
Swan-commit mailing list
Swan-commit@lists.libreswan.org
One is a wrapper for the other
Sent using a virtual keyboard on a phone
> On Sep 15, 2022, at 13:37, Brendan Kearney wrote:
>
>
> that seems to have done the trick, but i thought i was doing that albeit via
> a different command.
>
> ipsec auto --rereadsecrets
> vs
> ipsec secrets
>
> is
For IKEv2 that would go via EAP.
Currently, only EAPTLS is implemented. You are looking at EAP-mschapv2. We
don’t support that yet. I know strongswan does support it.
Paul
ps. Patches or other support always welcomed
Sent using a virtual keyboard on a phone
> On Sep 15, 2022, at 13:44,
list members,
IKEv1 could employ L2TP and PPP to authenticate a user on one end of a
tunnel against RADIUS, for additional security. i am not seeing any
info about IKEv2 being able to do so, and i may have come across write
ups saying not to use L2TP at all with IKEv2.
is there a way to
that seems to have done the trick, but i thought i was doing that albeit
via a different command.
ipsec auto --rereadsecrets
vs
ipsec secrets
is there a difference between the two commands? in either case, thanks
for the pointer.
brendan
On 9/12/22 3:13 PM, Paul Wouters wrote:
It
On Thu, 15 Sep 2022, Uday Raj wrote:
I am running libreswan version 3.31. By default my libreswan device is
negotiating in IKEV2. I want to change the IKE version to V1.
How do i change the IKE version from cli/config ?
Use:ikev2=no
This is a per-connection parameter.
Paul
ps. note
New commits:
commit a446d9e84f0651e95e341e82a9ef50e984688def
Author: Andrew Cagney
Date: Thu Sep 15 11:05:34 2022 -0400
showroute: add --debug
commit 65c4d044ead02a6b29fc737bb26b993db32558fc
Author: Andrew Cagney
Date: Thu Sep 15 11:02:50 2022 -0400
libswan: addr_lookup.c ->
