Version 152 - History - strongSwan User Documentation - strongSwan

strongSwan User Documentation » History » Version 152

Noel Kuntze, 07.01.2017 17:41
ExpiryRekey

-Andreas Steffen
+h1. strongSwan User Documentation
 Andreas Steffen
-Martin Willi
+{{>toc}}
 Martin Willi
-Noel Kuntze
+h2. Frequently Asked Questions
 Martin Willi
-Noel Kuntze
+* A list of [[FAQ|Frequently Asked Questions]] is maintained [[FAQ|here]].
 Noel Kuntze
-Noel Kuntze
+h2. Important articles
 Noel Kuntze
-Noel Kuntze
+* [[IntroductionTostrongSwan|Introduction to strongSwan]]
-Martin Willi
+** [[ForwardingAndSplitTunneling|Forwarding and Split-Tunneling]]
-Noel Kuntze
+* [[CorrectTrafficDump|Taking traffic dumps correctly]]
-Noel Kuntze
+* [[SecurityRecommendations|Security Recommendations]]
-Noel Kuntze
+* [[SimpleCA|Setting-up a simple CA using the strongSwan PKI tool]]
 Noel Kuntze
-Andreas Steffen
+h2. Features
 Andreas Steffen
-Andreas Steffen
+* [[VirtualIp|Virtual IP]] via mode-config (IKEv1) or configuration payload (IKEv2)
-Andreas Steffen
+* [[NatTraversal|NAT Traversal]]
-Andreas Steffen
+* [[MobIke|MOBIKE]]
-Martin Willi
+* [[CryptoTest|Crypto tests]] provide a way to self-test used crypto implementations
-Martin Willi
+* [[IntegrityTest|Integrity tests]] make sure that the daemons use plugins and libraries they were built against
-Martin Willi
+* [[PluginList|Plugin list]] gives an overview about all optionally loadable strongSwan plugins
 Martin Willi
-Martin Willi
+{{include_h(ConfigurationFiles)}}
 Martin Willi
-Noel Kuntze
+h2. Benchmarks
 Noel Kuntze
-Noel Kuntze
+* [[PublicKeySpeed|Public Key Benchmark]] using various crypto libraries (gmp, gcrypt, openssl)
-Andreas Steffen
+* [[RaspberryPi2Benchmark|Raspberry Pi 2 ESP Benchmark]]
 Noel Kuntze
-Noel Kuntze
+h2. HOWTOs
 Noel Kuntze
-Noel Kuntze
+* [[ExpiryRekey|Configuring rekeying and reauthentication]]
-Noel Kuntze
+* [[Pcrypt|Parallel IPsec processing using pcrypt]]
-Noel Kuntze
+* [[RouteBasedVPN|Information about route based VPNs (Virtual Tunnel Interfaces (VTIs))]]
-Andreas Steffen
+* [[NetworkManager|NetworkManager client setup]]
-Andreas Steffen
+* [[EapGtc|Authenticate road warriors using EAP-GTC and a PAM service]]
-Martin Willi
+* [[EapRadius|Use a RADIUS AAA server to authenticate clients with EAP]]
-Martin Willi
+* [[EapTls|EAP-TLS certificate authentication]]
-Martin Willi
+* [[HighAvailability|Configure a failsafe strongSwan High Availability cluster]]
-Andreas Steffen
+* [[SimpleCA|Setting-up a simple CA using the strongSwan PKI tool]]
-Andreas Steffen
+* [[CAmanagementGUIs|CA management made easy using GUIs]]
-Andreas Steffen
+* [[Bliss|Post-Quantum Bimodal Lattice Signature Scheme (BLISS) HOWTO]]
-Andreas Steffen
+* [[HashAndUrl|Hash-and-URL HOWTO]]
-Andreas Steffen
+* [[SqlLite|SQLite HOWTO]]
-Andreas Steffen
+* [[LoggerConfiguration|Logger configuration HOWTO]]
-Tobias Brunner
+* [[JobPriority|Job priority management HOWTO]]
-Andreas Steffen
+* [[IkeSaTable|IKE_SA lookup tuning HOWTO]]
-Martin Willi
+* [[MobileIPv6|Mobile IPv6 HOWTO]]
-Jean-Michel Pouré
+* [[SmartCards|Smartcard HOWTO]]
-Andreas Steffen
+* [[TrustedNetworkConnect|Trusted Network Connect (TNC) HOWTO]]
-Andreas Steffen
+* [[BYOD|Android BYOD Security based on TNC]]
-Andreas Steffen
+* [[IfMap|TNC IF-MAP HOWTO]]
-Andreas Steffen
+* [[StrongTnc|strongTNC Policy Manager HOWTO]]
-Andreas Steffen
+* [[IMA|Linux Integrity Measurement Architecture (IMA)]]
-Andreas Steffen
+* [[AwsVpc|Setting up a VPN into the Amazon Public Cloud's VPC]]
 Andreas Steffen
-Tobias Brunner
+{{include_h(ConfigurationExamples)}}
 Martin Willi
-Tobias Brunner
+h2. Portability
 Tobias Brunner
-Tobias Brunner
+* [[Android|strongSwan on Android]]
-Tobias Brunner
+* [[FreeBSD|strongSwan on FreeBSD]]
-Martin Willi
+* [[MacOSX|strongSwan on Mac OS X]]
-Martin Willi
+* [[Windows|strongSwan on Windows]]
-Tobias Brunner
+* [[OpenWrt|strongSwan on OpenWrt]]
-Tobias Brunner
+* [[Maemo|strongSwan on Maemo (Nokia N900)]]
 Tobias Brunner
 Tobias Brunner
-Andreas Steffen
+h2. Interoperability
 Martin Willi
-Noel Kuntze
+* [[Windows7|Windows 7 and newer]] with IKEv2
-Andreas Steffen
+* [[WindowsVista|Windows Vista]] with IKEv1
-Andreas Steffen
+* [[WindowsSuiteB|Windows Suite B Support]] with IKEv1
-Noel Kuntze
+* [[IOS_(Apple)|Apple iOS (iPhone, iPad) and Mac OS X]] with IKEv1/IKEv2
-Andreas Steffen
+* [[CharonPlutoIKEv1|strongSwan 4.x (pluto) - 5.x (charon)]] with IKEv1
-Noel Kuntze
+* [[BlackBerry|Blackberry OS 10 ]] with IKEv2
 Andreas Steffen
-Andreas Steffen
+h2. Management Commands
 Martin Willi
-Andreas Steffen
+* The powerful [[IpsecCommand|ipsec]] command starts, stops and monitors IPsec connections.
-Martin Willi
+* The alternative [[swanctl]] tool provides a new and portable configuration interface.
 Martin Willi
-Martin Willi
+h2. Auxiliary Tools
 Martin Willi
-Tobias Brunner
+* [[charon-cmd]] a simple command line IKE client
 Tobias Brunner
-Tobias Brunner
+* ipsec [[IpsecAttest|attest]] manages measurement reference values used for TPM-based remote attestation
-Andreas Steffen
+* ipsec [[IpsecLeases|leases]] shows the assignment of virtual IP adresses stored in volatile memory
-Andreas Steffen
+* ipsec [[IpsecPKI|pki]] generates and analyzes RSA/ECDSA private keys and X.509 certificates
-Tobias Brunner
+* ipsec [[IpsecPool|pool]] manages virtual IP address pools and attributes stored in an SQL database and provided by the [[attrsql|attr-sql plugin]]
-Andreas Steffen
+* ipsec [[ScepClient|scepclient]] implements the _Simple Certificate Enrollment Protocol (SCEP)_
-Andreas Steffen
+* ipsec [[IpsecStarter|starter]] starts, stops, and configures the IKE daemons
-Andreas Steffen
+* ipsec [[IpsecStroke|stroke]] controls the IKE charon daemon
-Tobias Brunner
+* ipsec [[IpsecConftest|conftest]] is a tool to test IKEv2 implementations

Project

General

Profile

strongSwan

strongSwan User Documentation » History » Version 152