[strongSwan] Socket-win installing virtual IP failed (Strongswan 5.3.5 mingw Windows 10 64bit)
noel at familie-kuntze.de
Tue Dec 29 00:16:10 CET 2015
-----BEGIN PGP SIGNED MESSAGE-----
> On the windows box I'm using socket-win, with the internal windows ikeext disabled. > Charon-svc is running in an admin cmd and I'm using a non-priv cmd to call swanctl. > I've read that kernel-iph can't install virtual ips, but I thought socket-win a completely separate userspace implementation. > > My question is: > - Am I missing a point and utterly misread/interpreted the online wiki?
strongSwan on Windows currently can not install virtual IPs. Even if it could, the virtual IP would be quite useless, because
the Windows IPsec component does not seem to be able to work with IPs that are installed on the loopback adapter.
The description of the charon plugins gives all the infos. I wrote this from memory, so things could be off. Check
the plugin pages. I already looked at this when the port was released and came to the conclusion that to build a working
roadwarrior version of strongSwan on Windows, you'd need to either get Microsoft to fix that bug
or implement your own IPsec backend in userspace (or kernelspace?) that handles that correctly.
Mit freundlichen Grüßen/Kind Regards,
GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
-----END PGP SIGNATURE-----
More information about the Users