> Currently missing is the connection fallback, though. So > if your first connection does not comply, the setup fails without > switching to a potentially matching connection. I'll try to get this > implemented ASAP, but this requires some work.
I've just pushed another patch [1] that implements late peer config switching if XAuth authentication does not fulfill the configured constraints, such as group membership. With all these patches applied, group information from RADIUS now can be used to select configurations in IKEv1, too. Regards Martin [1]http://git.strongswan.org/?p=strongswan.git;a=commitdiff;h=8b560a45 _______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
