[strongSwan] ikev1 without specifying rightid
Andreas Steffen
andreas.steffen at strongswan.org
Tue Jun 29 11:51:14 CEST 2010
Hi Mark,
whereas IKEv2 allows a peer to initiate a connection with the other
endpoint's ID given by a wildcard expression (in that case the optional
IDr will not be not sent), this not possible with IKEv1.
Regards
Andreas
On 29.06.2010 01:30, Marwil, Mark-P63354 wrote:
> I am using Strongswan version 4.3.6 setup according to the example
> ikev1/nat-before-esp. This configuration works for me if I specifiy the
> full DN for the rightid parameter. When I take the rightid out, the
> connection fails.
>
> I would like to find out if it is possible to just specify the peers IP
> address without specifying the DN. Is there a way to tell Pluto that it
> should trust the peer even if it does not know the DN?
>
> Thank you,
>
> Mark Marwil
>
======================================================================
Andreas Steffen andreas.steffen at strongswan.org
strongSwan - the Linux VPN Solution! www.strongswan.org
Institute for Internet Technologies and Applications
University of Applied Sciences Rapperswil
CH-8640 Rapperswil (Switzerland)
===========================================================[ITA-HSR]==
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/pkcs7-signature
Size: 3430 bytes
Desc: S/MIME Cryptographic Signature
URL: <http://lists.strongswan.org/pipermail/users/attachments/20100629/a89821a6/attachment.bin>
More information about the Users
mailing list