The host to host ipsec transport mode works on Linux but does not work on any of the BSDs. The problem is a lack of IKE socket bypass , transport...
Add Support For Announcing Authentication Methods To Libreswan
Osema Fadhel
Currently, during an IKEv2 negotiation in Libreswan, each peer independently selects its authentication method without knowing what the other side...
Optimising the lookup time for ACQUIRE messages sent by kernel
Vinayak Sandur
When an IPsec-encrypted packet matches a trap policy in the kernel, the kernel notifies IKE daemon (Pluto) via an ACQUIRE Netlink message. Then Pluto...
