[strongSwan] ECDSA-384 certificates and Windows 7
Noel Kuntze
noel at familie-kuntze.de
Fri Aug 21 03:24:38 CEST 2015
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hello Fred,
> Is there a way of getting win7 to work so a single stongSwan config can be used?
>
> If not is there a way to use RSA certificates for specific users or some other selection criteria so win7 and win8 can be simultaneously supported?
Because Windows sends the IP as ID and not the DNS name, as far as I know, the only way
to keep them apart is by using two different IPs, one for Windows 7 and one for Windows 8 and later.
You cannot tell them apart using solely information presented in ike itself, because the responder IDs
the endpoints send are always the IP, if you use windows.
- --
Mit freundlichen Grüßen/Kind Regards,
Noel Kuntze
GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=54B0
-----END PGP SIGNATURE-----
More information about the Users
mailing list