Hi,
I had a doubt regarding the support of IP addresses and ports as
traffic selectors.
For example:-
I have following SPD Entry. All the entries are using same security association:
S.No.Source IP Destination IP Src Port Dst
Port SA Ptr
11.1.1.1
Hi,
Is the following esp line, valid configuration?
conn west-east
esp=null-sha1-modp1024,null-null
Does it mean: add null-sha1-modp1024 and null-null to the default list
of proposals to be negotiated?
How do I know what the default list proposal list is?
Regards,
Dimitrios Siganos
Hi Dimitrios,
yes, this means that esp=null-sha1-modp1204 is added to the default
list defined by
http://wiki.strongswan.org/repositories/entry/strongswan/src/charon/config/proposal.c#L865
esp=null-null is not a valid configuration, since we do not accept a
null integrity algorithm. If you want
Hi Martin,
Excuse me. I have one question about the EAP-SIM authentication. When I read
the code of EAP-SIM authentication, I found RAND was read from triplet.dat
rather than received from Server. And I refer to some materials for EAP-SIM
authentication, and found RAND is an input parameter