[Openswan Users] Is it possible to auth by either psk or rsa?

Paul Wouters paul at xelerance.com
Thu Jul 15 15:42:57 EDT 2010

On Thu, 15 Jul 2010, Brad Peterson wrote:

> I agree of course, and wish I had another way.  But supporting iPhone clients is a priority, and they don't support certificates for
> L2TP/IPsec.  I am hoping a dual-auth setup will let us accept iPhone clients, but still protect other connections from the
> man-in-the-middle attacks that PSK's allow.
> Am I missing a better way to do this?

If you have a spare IP, use one for RSA and one for PSK connections?


More information about the Users mailing list