[strongSwan] fail open mode for strongswan
Thomas Egerer
hakke_007 at gmx.de
Tue Feb 9 19:31:13 CET 2016
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hi Matt,
no, that's afaik not possible. Why would you want to transmit data in plain
if you configured a tunnel/transport mode SA for it?
Cheers,
Thomas
On 02/09/2016 07:23 PM, Matthew Boedicker wrote:
> Are there any configuration settings that can make strongswan "fail open"
> when in host-to-host transport mode? It would try to negotiate an encrypted
> connection but fall back to communicating in the clear if the encryption
> failed for some reason.
>
> Thanks.
>
>
>
> _______________________________________________
> Users mailing list
> Users at lists.strongswan.org
> https://lists.strongswan.org/mailman/listinfo/users
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2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=r95a
-----END PGP SIGNATURE-----
More information about the Users
mailing list