Hi I'm after a little help, have spent what seems like an age trying to find the solution.
I am attempting to secure traffic between a LibreSwan host and multiple dynamic Windows hosts. If I specify a single right host as shown in the configuration below it works as expected, in that security is required. However, if I change to a IP range or %any, security is now only optional. I need to change this behaviour so security is required. I have not been able to figure out how to enforce this change in behaviour, can anyone help? conn main type=transport authby=secret left=192.168.10.130 right=192.168.10.128 # right=192.168.10.127-192.168.10.129 # right=%any pfs=yes ike=3des-sha1;modp1024 phase2=esp auto=start Thanks Matt Information contained in this e-mail is intended for the use of the addressee only, is confidential and may be the subject of Legal Professional Privilege. Any dissemination, distribution, copying or use of this communication without our prior permission or that of the addressee is strictly prohibited. The contents of an attachment to this e-mail may contain software viruses, which could damage your own computer system. While Tribal has taken every reasonable precaution to minimise this risk, we cannot accept liability for any damage which you sustain as a result of software viruses. You should carry out your own virus checks before opening the attachment.
_______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
