[strongSwan-dev] Need solution for strongSwan VPN Tunnel specific CA in the configuration for the Authentication
Kalpesh Panchal
kalpesh.panchal at rockwellcollins.com
Fri Nov 3 17:20:06 CET 2017
Hi Tobias,
Thanks for your quick response.
We will work your suggestion & let you know if we face any issue.
Regards,
Kalpesh Panchal
On Fri, Nov 3, 2017 at 3:47 AM, Tobias Brunner <tobias at strongswan.org>
wrote:
> Hi Kalpesh,
>
> > Here we can not use rightca option as we may have up to 20 different
> > CAs for each Tunnel.
>
> Please consider switching to swanctl.conf [1] or vici [2] instead of
> using ipsec.conf-based configs. Then you can provide a list of accepted
> CA certificates for each connection.
>
> Regards,
> Tobias
>
> [1] https://wiki.strongswan.org/projects/strongswan/wiki/Swanctlconf
> [2] https://wiki.strongswan.org/projects/strongswan/wiki/Vici
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/dev/attachments/20171103/20410928/attachment.html>
More information about the Dev
mailing list