Hi folks,
seems that network-manager-strongswan is not recognized
by the network-manager-gnome applet (0.9.10) anymore.
Its not listed in the connection types for creating a
new VPN connection. Existing connections still work,
but they cannot be edited.
Every helpful hint is highly appreciated
Hello,
I have some problems enabling PFS on the CHILD SA.
I'm using strongswan 5.2.0 on FreeBSD.
Here are the site configurations:
Site1 (responder):
config setup
conn %default
ikelifetime=360m
keylife=60m
rekeymargin=3m
keyingtries=1
keyexchange=ikev2
Hello,
In our Bump In The Wire IPsec implementation (strongSwan 4.5.2-al4) the
INFORMATIONAL messages are periodically sent even if there is traffic on the
tunnel. Since the tunnel traffic is not seen by Linux this seems normal.
There is any way to tell to strongSwan that there is traffic in
Hello,
I'm running Strongswan 5.2.0 on FreeBSD security gateways.
I set up a Active/Passive HA cluster.
I successfully created 300 connections thanks to another remote gateway using
strongswan's load-tester plugin.
= the passive node has been correctly synchronized.
I then decided to bring
Hi Emeric
On 08/01/2014 04:05 PM, Emeric POUPON wrote:
Hello,
I have some problems enabling PFS on the CHILD SA.
I'm using strongswan 5.2.0 on FreeBSD.
Here are the site configurations:
looks good.
However [1], the IKE_AUTH exchange responsible for
establishing the *first* CHILD_SA does
Hi Emeric,
On 08/01/2014 06:22 PM, Emeric POUPON wrote:
Hello,
I'm running Strongswan 5.2.0 on FreeBSD security gateways.
I set up a Active/Passive HA cluster.
I successfully created 300 connections thanks to another remote gateway using
strongswan's load-tester plugin.
= the passive