General

Profile

Roman Moschenski

  • Registered on: 10.07.2017
  • Last connection: 16.10.2019

Issues

Activity

16.10.2019

16:43 strongSwan Issue #3209: rekeying and updown script
I am using a new strongswan feature: virtual tunnel interfaces. I create an VTI in updown script if PLUTO_VERB is set...
16:02 strongSwan Issue #3209: rekeying and updown script
Thank you for your support. I have to find another way than updown script for my problem.
15:36 strongSwan Issue #3209: rekeying and updown script
Yes, I meant a reauthentication. Is there any other way to detect a running reauthentication? If no, could you point ...
14:22 strongSwan Issue #3209 (Closed): rekeying and updown script
Is there any way to distinguish between rekeying of an already established connection and between establishment of a ...

18.02.2019

12:53 strongSwan Feature #2845: Support virtual XFRM interfaces added in 4.19
Do you plan to include these new patches in 2845-xfrmi branch in to a new strongswan release?

13.02.2019

14:44 strongSwan Feature #2845: Support virtual XFRM interfaces added in 4.19
Great work! Have I to use vici/swanctl.conf ? No way to add new parameters (if_id_in, if_id_out) in ipsec.conf ?

11.12.2018

20:06 strongSwan Feature #2845: Support virtual XFRM interfaces added in 4.19
Stijn Tintel wrote:
> See https://www.mail-archive.com/netdev@vger.kernel.org/msg239295.html
> Would be nice if thi...

14.08.2017

11:55 strongSwan Bug #2388: The symmetric key (enc cbc(aes)) can be retrieved in a memory dump after a tunnel was closed
> OK, so you do that in the kernel?
Yes, I have removed a copying of *xfrm_algo_auth* and *xfrm_algo* into user sp...

09.08.2017

13:59 strongSwan Bug #2388: The symmetric key (enc cbc(aes)) can be retrieved in a memory dump after a tunnel was closed
> No clue, unless it's somehow related to your version of OpenSSL
I have tried to compile Strongswan without OpenSSL...

04.08.2017

17:40 strongSwan Bug #2388: The symmetric key (enc cbc(aes)) can be retrieved in a memory dump after a tunnel was closed
In our test environment we had "ipsec statusall" running every 3 seconds, so I have switched it off for this test.
H...

Also available in: Atom