[strongSwan-dev] [PATCH] For PFS prefer DH group from IKE_SA over first configured
Martin Willi
martin at strongswan.org
Tue Sep 10 10:33:26 CEST 2013
Hi Thomas,
> If PFS is configured for a CHILD_SA first try to create a list of
> proposals with using DH group negotiated during phase 1.
Yes that makes sense, thanks for the patch. Applied with some coding
style nitpicks to master [1].
Best Regards
Martin
[1]http://git.strongswan.org/?p=strongswan.git;a=commitdiff;h=7d938be9
More information about the Dev
mailing list