[Openswan dev] coexistence of RSA connections with and without Xauth

Elison Niven elison.niven at elitecore.com
Wed Aug 22 02:43:54 EDT 2012


The patch is fine. Very useful to allow IPSEC XAUTH based roadwarriors 
along with L2TP/IPSEC roadwarriors.

On Tuesday 21 August 2012 07:26 PM, Andrey Alexandrenko wrote:
> Hello,
> I have prepared a patch witch solves for me following issue with Xauth 
> in Openswan.  Pluto may refuse to connect with a road warrior If some 
> misc connections (with and without Xauth) are configured. The reason 
> is that pluto do not regard Xauth policy in main_inI1_outR2 and may 
> just choose a not suitable connection for proceeding. In my patch I 
> evaluate XAUTH VID and use this information by connection finding.
> The patch was prepared for openswan-2.6.35, but it works with 
> openswan-2.6.38 as well.
> Any feedback on the patch is appreciated.
> Regards, Andrey Alexandrenko
> _______________________________________________
> Dev mailing list
> Dev at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/dev

Best Regards,
Elison Niven

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/dev/attachments/20120822/d3b121b5/attachment-0001.html>

More information about the Dev mailing list