[strongSwan] CRLs over IPsec tunnels

Martin Willi martin at strongswan.org
Wed Nov 7 16:11:46 CET 2012


> 1)Charon HTTP requests use the protocol and port from "/etc/services" (e.g. TCP/80)?
> 2)Charon supports the rfc3986 - Uniform Resource Identifier (URI): Generic Syntax?

CRL fetching is delegated to libcurl (http://curl.haxx.se/libcurl/). I
assume it uses /etc/services, but have never investigated this further.
RFC3986 URIs are supported, but we currently fetch from http(s), ftp and
file:// URIs only.

LDAP URIs are supported through the ldap plugin, which is built on


More information about the Users mailing list