Hi Graham,
to lighten the load on the AAA infrastructure behind the Security
Gateway.
Yes, I agree. Even if we do not support Re-auth, supporting a minimal
Identity exchange as we do in EAP-SIM would really help.
I can let you have the AKA-Identity support as a patch if you want.
A tested
Hi,
We are in a very critical state of our project. Please fin gtime to
respond to the issue below.
Yes, the software we provide is free, but SLAs are not. We are giving
our best to provide support free of charge, and we have indeed spent
several hours to help you on your issues. But paying
Hi,
1) If the used virtual memory exceed, the following error will be occurred,
is it right?
Resource temporarily unavailable-93: received netlink error
I have never seen such a Resource temporarily unavailable error from
netlink, and 93 is actually EPROTONOSUPPORT. You are probably missing
Hi,
Can someone please let me know whether strongSwan supports RFC 4754. If yes
then can someone please point me to file location which implements auth
payload construction for ECDSA authentication
Thanks,
Kunal
___
Users mailing list
Hi Kunal,
yes, both our IKEv1 and IKEv2 daemons support RFC4754.
In the IKEv1 code the hash for the ECDSA signature is constructed in
pluto/ipsec_doi.c:main_mode_hash()
http://wiki.strongswan.org/repositories/entry/strongswan/src/pluto/ipsec_doi.c#L1355
which is then signed in