Please read this before reporting a bug:
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
https://wiki.archlinux.org/title/Bug_reporting_guidelines
Do NOT report bugs when a package is just outdated, or it is in the AUR. Use the 'flag out of date' link on the package page, or the Mailing List.
REPEAT: Do NOT report bugs for outdated packages!
FS#36145 - [ipsec-tools] wild char pre-shared key support
Attached to Project:
Community Packages
Opened by Eric Liu (hnws) - Sunday, 14 July 2013, 03:45 GMT
Last edited by Sergej Pupykin (sergej) - Monday, 12 August 2013, 15:02 GMT
Opened by Eric Liu (hnws) - Sunday, 14 July 2013, 03:45 GMT
Last edited by Sergej Pupykin (sergej) - Monday, 12 August 2013, 15:02 GMT
|
DetailsDescription:
Since L2TP provides the per-user authentication we want to use a single pre-shared key for all VPN users, but this is hard to do with ipsec-tools since racoon only supports pskey lookup by address when identity protection is used and we do not know the address of the client in advance. The attached patch adds a wildcard match to the psk.txt reading code, specifying an id of * will match any client. Wildcard PSKs has been a long time "feature" request for this project, and until now, discussions in developer's team always had the same conclusion: we won't officially implement that. It is really useful for creating L2TP/IPsec server. I have created a ipsec-tools-wild-char in AUR. But it would be nice if the support could be in repo like all of other distros. |
This task depends upon
Closed by Sergej Pupykin (sergej)
Monday, 12 August 2013, 15:02 GMT
Reason for closing: Won't implement
Monday, 12 August 2013, 15:02 GMT
Reason for closing: Won't implement
Comment by Sergej Pupykin (sergej) -
Wednesday, 17 July 2013, 09:38 GMT
wild-char.patch should be approved by upstream