Hi, in order to make a local network tap-proof, I'd like to encrypt the traffic between authenticated stations. Non-encrypted traffic between authenticated stations and unauthenticated ones (e.g. printers) must still be possible, but unauthenticated stations connecting to the network should not be able to tap traffic between authenticated ones. Authentication should be done by public keys.
Is this possible with Strongswan? And is there an example configuration available? I couldn't find one in the documentation (which is somewhat shattered and confusing anyway) and among the sample configurations, but perhaps I am just not seeing the forrest for the trees. Thanks! -- Best regards Rainer Klute
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
