[strongSwan] IKEv1 - Authentication Methods - RFC 2409 Public Key Encryption support in Strongswan

Emil Salib salibeh at jmu.edu
Tue Jun 28 02:38:36 CEST 2011

My question is to do with IKEv1 Phase 1 Authentication. RFC 2409 specifies 4
different Authentications: A shared secret, A digital signature, Public key
encryption and Revised public key encryption. Using StrongSwan 4.4.0, I was able
to set up net2net PSK , net2net digital signature using both RAW RSA and X.509
certificates.  Is there a way to set up a net2net with the 2409 public key
encryption authentication method (where the ID and Nonce in the second and third
ISKAMP (main mode) messages are encrypted) using StrongSwan?

More information about the Users mailing list