Bug 1300752 - Include Opportunistic IPsec in libreswan
Summary: Include Opportunistic IPsec in libreswan
Keywords:
Status: CLOSED DUPLICATE of bug 1324458
Alias: None
Product: Red Hat Enterprise Linux 7
Classification: Red Hat
Component: libreswan
Version: 7.4
Hardware: All
OS: Linux
medium
medium
Target Milestone: rc
: ---
Assignee: Paul Wouters
QA Contact: BaseOS QE Security Team
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2016-01-21 15:58 UTC by Paul Wouters
Modified: 2016-11-30 01:09 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Rebase: Bug Fixes and Enhancements
Doc Text:
Clone Of:
Environment:
Last Closed: 2016-11-30 01:09:38 UTC
Target Upstream Version:

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)

Description Paul Wouters 2016-01-21 15:58:43 UTC 
Opportunistic IPsec is used to install policies based on CIDRs and ports to try and opportunisticly build IPsec tunnels where possible. This can be unauthenticated (using AUTH-NULL) or authenticated (using GSSAPI/Kerberos, DNSSEC or other third party hooks)

Upstream work is happening on this, and expected to be released in 3.17 or 3.18..

The 3.16 release incorporated AUTH-NULL Opportunistic IPsec already.
Comment 4 Jaroslav Aster 2016-11-23 15:18:14 UTC 
Hi Paul,

could you please provide us list of new features to test in new package if there will be any? Thanks.
Comment 5 Paul Wouters 2016-11-30 01:09:38 UTC 

*** This bug has been marked as a duplicate of bug 1324458 ***
Note You need to log in before you can comment on or make changes to this bug.