Penguin
Recent Changes
Annotated edit history of StrongSwan version 25, including all changes. View license author blame.
Rev Author # Line
12 AndreasSteffen 1 [strongSwan|http://www.strongswan.org/] is a fork of the FreeSwan project, providing an [IPSec] implementation on Linux.
2
3 It was started by Andreas Steffen, the maintainer of the X.509 patch for FreeS/WAN and focuses on [PKI] and policies for implementing large and complex [VirtualPrivateNetwork]s. strongSwan supports both the native [26sec] [IPSec] stack coming with the Linux 2.6 kernel as well as [FreeSwan]'s [KLIPS] [IPSec] implementation for the Linux 2.4 kernel. NatTraversal is also fully supported.
4
5 A feature comparison with OpenSwan:
6
7 <?plugin OldStyleTable
8
25 AndreasSteffen 9 | __Feature__ | __strongswan-2.8.3__ | __openswan-2.4.7__
12 AndreasSteffen 10 | FreeS/WAN version | freeswan-2.04 | freeswan-2.04
11 | X.509 patch | x509-1.7.0 | x509-1.5.4
12 | KLIPS | Linux 2.4 | Linux 2.4 + 2.6
13 | Fast ipsec starter | yes | partial
14 | Smartcard Interface | PKCS #11 | OpenSC
15 | Local CRL Caching | yes | no
16 | CA Management | yes | no
17 | Attribute Certificates | yes | no
23 AndreasSteffen 18 | XAUTH | __yes__ | yes
12 AndreasSteffen 19 | Aggressive Mode | no | yes
20
21 ?>
22
23 strongSwan comes with an easy-to-use simulation environment based on [UserModeLinux] (UML). A network of eight virtual hosts allows the user to enact a multitude of site-to-site and roadwarrior [VPN] scenarios.
24
25 See also:
26
27 * [LinuxTag 2005 Paper: Advanced Features of Linux strongSwan|http://www.strongswan.org/docs/LinuxTag2005-strongSwan.pdf]
28 * [strongSwan UML testing environment|http://www.strongswan.org/uml/]
29 * [DFN 2005 Paper: Advanced Network Simulation under User-Mode Linux|http://www.strongswan.org/uml/DFN_UML.pdf]
30
31 ----
32 CategorySecurity