Red Hat Bugzilla – Bug 1300752
Include Opportunistic IPsec in libreswan
Last modified: 2016-11-29 20:09:38 EST
Opportunistic IPsec is used to install policies based on CIDRs and ports to try and opportunisticly build IPsec tunnels where possible. This can be unauthenticated (using AUTH-NULL) or authenticated (using GSSAPI/Kerberos, DNSSEC or other third party hooks)
Upstream work is happening on this, and expected to be released in 3.17 or 3.18..
The 3.16 release incorporated AUTH-NULL Opportunistic IPsec already.
could you please provide us list of new features to test in new package if there will be any? Thanks.
*** This bug has been marked as a duplicate of bug 1324458 ***