[strongSwan] Split tunnel config per user (IOS)
Raoul Duke
rduke496 at gmail.com
Sat Sep 6 21:07:56 CEST 2014
Hi,
I'm using IOS devices (ikev1) and split tunneling via the Unity
extensions (split-include)
I'd like to be able to give a different split config to a user
depending on some criteria (e.g. per-user config or a flag in a radius
database or such like).
However, at the moment it seems like Unity split tunnel config is a
global setting in strongswan. Is there any specific architecture
reason it needs to be this way or is it just a current limitation?
Can anyone suggest/recommend any viable route to making a per-user
split-tunnel configuration?
(Incidentally, I did just read that IOS 8 may support ikev2. Does
anyone know anything about this?. Would this mean the normal
leftsubnet route would work rather than having to use Unity?).
Thanks.
RD
More information about the Users
mailing list