[strongSwan] strict crl policy

Modster, Anthony Anthony.Modster at Teledyne.com
Fri Sep 24 22:14:59 CEST 2021


Does setting strict CRL policy to yes still work ?

The CRL's for TA and SCA are removed.
Was expecting the VPN tunnel not to make a connection.

strongSwan 5.8.2

# ipsec.conf - strongSwan IPsec configuration file

# basic configuration

config setup
                charondebug="ike 2,cfg 2"
                # uniqueids = no

Teledyne Confidential; Commercially Sensitive Business Data
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.strongswan.org/pipermail/users/attachments/20210924/de522e07/attachment-0001.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: security-env03-charon.log
Type: application/octet-stream
Size: 33752 bytes
Desc: security-env03-charon.log
URL: <http://lists.strongswan.org/pipermail/users/attachments/20210924/de522e07/attachment-0001.obj>

More information about the Users mailing list