[strongSwan] conditional expressions in swanctl.conf?
Michael Schwartzkopff
ms at sys4.de
Wed Sep 21 13:56:18 CEST 2022
On 21.09.22 13:47, Tobias Brunner wrote:
> Hi Harri,
>
>> is there some way to express
>>
>> if peercert->OU == develop
>> pool = pool1
>> else
>> pool = pool2
>>
>
> You can match identities with wildcards, see [1].
>
> Regards,
> Tobias
>
> [1] https://www.strongswan.org/testing/testresults/ikev2/wildcards/
That is cool. I didn't know that.
If both connections in the config match, which one is chosen? First one?
Most specific (where OU matches)?
Mit freundlichen Grüßen,
--
[*] sys4 AG
https://sys4.de, +49 (89) 30 90 46 64
Schleißheimer Straße 26/MG,80333 München
Sitz der Gesellschaft: München, Amtsgericht München: HRB 199263
Vorstand: Patrick Ben Koetter, Marc Schiffbauer, Wolfgang Stief
Aufsichtsratsvorsitzender: Florian Kirstein
More information about the Users
mailing list