Hello Oleksandr, On 08.10.2014 10:36, Oleksandr Yermolenko wrote:
Hello, everyone,environment: strongswan 2.5.0 and freeradius 3.04. my scenario based on http://www.strongswan.org/uml/testresults/ikev2/rw-eap-ttls-radius/ the question about configuring client carol? 1. is it correct? ./configure --prefix=/usr --sysconfdir=/etc --enable-eap-md5 --enable-eap-ttls --enable-eap-identity
Yes, for the VPN client this is sufficient. If the CA which issued your Radius server and VPN gateway certificates maintains a Certificate Revocation List (CRL) then you could also enable the curl or soup HTTP fetcher plugins (--enable-curl or --enable-soup).
big thanks for your help and advices. Oleksandr
Best regards Andreas ====================================================================== Andreas Steffen [email protected] strongSwan - the Open Source VPN Solution! www.strongswan.org Institute for Internet Technologies and Applications University of Applied Sciences Rapperswil CH-8640 Rapperswil (Switzerland) ===========================================================[ITA-HSR]==
smime.p7s
Description: S/MIME Cryptographic Signature
_______________________________________________ Users mailing list [email protected] https://lists.strongswan.org/mailman/listinfo/users
