Annotated edit history of
StrongSwan version 25, including all changes.
View license author blame.
Rev |
Author |
# |
Line |
12 |
AndreasSteffen |
1 |
[strongSwan|http://www.strongswan.org/] is a fork of the FreeSwan project, providing an [IPSec] implementation on Linux. |
|
|
2 |
|
|
|
3 |
It was started by Andreas Steffen, the maintainer of the X.509 patch for FreeS/WAN and focuses on [PKI] and policies for implementing large and complex [VirtualPrivateNetwork]s. strongSwan supports both the native [26sec] [IPSec] stack coming with the Linux 2.6 kernel as well as [FreeSwan]'s [KLIPS] [IPSec] implementation for the Linux 2.4 kernel. NatTraversal is also fully supported. |
|
|
4 |
|
|
|
5 |
A feature comparison with OpenSwan: |
|
|
6 |
|
|
|
7 |
<?plugin OldStyleTable |
|
|
8 |
|
25 |
AndreasSteffen |
9 |
| __Feature__ | __strongswan-2.8.3__ | __openswan-2.4.7__ |
12 |
AndreasSteffen |
10 |
| FreeS/WAN version | freeswan-2.04 | freeswan-2.04 |
|
|
11 |
| X.509 patch | x509-1.7.0 | x509-1.5.4 |
|
|
12 |
| KLIPS | Linux 2.4 | Linux 2.4 + 2.6 |
|
|
13 |
| Fast ipsec starter | yes | partial |
|
|
14 |
| Smartcard Interface | PKCS #11 | OpenSC |
|
|
15 |
| Local CRL Caching | yes | no |
|
|
16 |
| CA Management | yes | no |
|
|
17 |
| Attribute Certificates | yes | no |
23 |
AndreasSteffen |
18 |
| XAUTH | __yes__ | yes |
12 |
AndreasSteffen |
19 |
| Aggressive Mode | no | yes |
|
|
20 |
|
|
|
21 |
?> |
|
|
22 |
|
|
|
23 |
strongSwan comes with an easy-to-use simulation environment based on [UserModeLinux] (UML). A network of eight virtual hosts allows the user to enact a multitude of site-to-site and roadwarrior [VPN] scenarios. |
|
|
24 |
|
|
|
25 |
See also: |
|
|
26 |
|
|
|
27 |
* [LinuxTag 2005 Paper: Advanced Features of Linux strongSwan|http://www.strongswan.org/docs/LinuxTag2005-strongSwan.pdf] |
|
|
28 |
* [strongSwan UML testing environment|http://www.strongswan.org/uml/] |
|
|
29 |
* [DFN 2005 Paper: Advanced Network Simulation under User-Mode Linux|http://www.strongswan.org/uml/DFN_UML.pdf] |
|
|
30 |
|
|
|
31 |
---- |
|
|
32 |
CategorySecurity |