[strongSwan] openvz vps error on strongwan kernel-libipsec
jeffrey buan
jefbuan at gmail.com
Thu Jul 9 10:49:52 CEST 2015
Hi Tobias
Thanks that did it..forgot to enable tun on my vps panel and now it works
great..
One more question.I can connect my ios devices with user/pass without
importing cert/pem and its more convenient to me and my family
If I want to add some users using windows with user/password auth only
is there a way i can add l2pt/ipsec on ipsec.conf??
On Thu, Jul 9, 2015 at 11:34 AM, Tobias Brunner <tobias at strongswan.org>
wrote:
> Hi Dan,
>
> > After doing some research it looks like I need to use the libipsec
> plugin.
> > Is that correct?
>
> Not necessarily (it's usually preferable to use the kernel's IPsec
> stack). Perhaps you just need to load some missing kernel module (see
> [1]) or change your ESP proposal because the kernel perhaps does not
> support one of the negotiated algorithms.
>
> > I see two configuration options: --enable-kernel-libipsec and the
> > --enable-libipsec.
> >
> > What's the difference and are they configured differently?
>
> libipsec is the actual userland IPsec implementation, the
> kernel-libipsec plugin is the middleware between IKE daemon and
> libipsec. Enabling kernel-libipsec automatically enables libipsec.
>
> Regards,
> Tobias
>
> [1] https://wiki.strongswan.org/projects/strongswan/wiki/KernelModules
>
> _______________________________________________
> Users mailing list
> Users at lists.strongswan.org
> https://lists.strongswan.org/mailman/listinfo/users
>
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20150709/76fd3f5d/attachment.html>
More information about the Users
mailing list