Hi All,
We have a question here concerning verification of the SeGW's certificate by
the local tunnel initiator.
We configure our initiator with the FQDN of the SeGW. The initiator resolves
this FQDN to an IP address and then sends the tunnel setup requests to that
IP address with the IDr set to
Hi Graham,
Does strongSwan (on the initiator) check that the original FQDN/IDr is
also in the certificate ?
Yes.
If the certificate has only a subject and no subjectAltName, does
strongSwan check that the IDr matches the CN specified in the
subject of the certificate ?
Unlike in SSL/TLS,
Hi,
Can strongSwan (as client) send INTERNAL_IP4_SUBNET in Configuration Payload?
How to configure it?
Thanks very much for your help
Nan
--- On Fri, 6/24/11, Nan Luo harvana2...@yahoo.com wrote:
From: Nan Luo harvana2...@yahoo.com
Subject: [strongSwan] Question on sending INTERNAL_IP4_DNS in