Hi Dirk, >> Not sure why the behavior changed between 5.1.3 and 5.2.0 in this >> regard; likely that it is related to the replaced ipsec.conf parser. > > It's probably the new parser. > Checking the logs on the gateway running 5.1.3 I discovered that the > rightsendcert = never wasn't honoured for any connection. Windows 7 eap > clients received a cert request too. So your suggestion to remove this > option from our config should be no problem.
Intriguing. Could you send me the complete config file that manifests this difference in behavior? Thanks, Tobias _______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users