During my testing, I updated to 3.23 and it worked as advertised. However, my production environment is running RHEL 6 and my management requires a supported solution. As I understand is, RedHat will only support the version available in their repo. Based on my understanding, this requirement limits me to 3.15.
On Thu, Jun 7, 2018 at 11:54 AM, Paul Wouters <[email protected]> wrote: > On Thu, 7 Jun 2018, Matthew Johnson wrote: > > I'm trying to use opportunistic encryption with 3.15 (available in CentOS >> 6 repos), but running in to the following error (at least I >> think this is my error): >> > > Please pick a newer release to use Opportunistic IPsec. You can find > newer builds for CentOS6 on our libreswan repository at > https://download,libreswan.org/binaries/ > > narrowing=yes >> > > You should not need narrowing unless you need to support it through NAT. > > As far as I know, my configuration should eliminate the need to query DNS >> for a key. >> > > Yeah it should. Please pick 3.23 (or a 3.24rc candidate) > > Paul >
_______________________________________________ Swan mailing list [email protected] https://lists.libreswan.org/mailman/listinfo/swan
