ABULIUS, MUGUR (MUGUR) wrote:
Andreas, Thank you again for responding.
Indeed, the explanation concerning asymmetry for leftprotoport= and
rightprotoportin= is quite simple.
Do you confirm that calling: ipsec up net-net on the 'net-net'
connection from your example will create IPsec SAs
Hello Andreas,
Thank you very much
So, each conn corresponds to exactly one CHILD_SA
Best Regards
Mugur
-Original Message-
From: Andreas Steffen [mailto:andreas.stef...@strongswan.org]
Sent: dimanche 27 décembre 2009 14:42
To: ABULIUS, MUGUR (MUGUR)
Cc: users@lists.strongswan.org;
Hello Mugur,
the idea is not to establish multiple IKE_SA, but multiple CHILD_SAs
with identical traffic selectors. Take the ikev2/net2net-cert UML
scenario as an example:
sun ~ # ipsec start
moon ~ # ipsec start
moon ~ # ipsec up net-net
moon ~ # ping -c 2 -I 10.1.0.1 10.2.0.1
moon ~ # ipsec
Oops, here is the missing net-net-scenario.txt file.
Andreas Steffen wrote:
Hello Mugur,
the idea is not to establish multiple IKE_SA, but multiple CHILD_SAs
with identical traffic selectors. Take the ikev2/net2net-cert UML
scenario as an example:
sun ~ # ipsec start
moon ~ # ipsec
Hi, all.
Just try to create VPN server for my blackberry by using strongswan,
Blackberry seems support the following VPN:
Alcatel® 7130 Secure VPN Gateways
Avaya® VSU® Series of VPN Gateways
CheckPoint® Systems Software Technologies VPN-1
Cisco® VPN 3000 Concentrator Series
Cisco Secure PIX®
