Andrew Spiers <andrew@andrewspiers.net> wrote:
Which is your favourite, and why?
I'm not sure. I managed to get OpenSWAN working over IPv6, but it had a few problems and limitations. StrongSWAN has better protocol support (e.g., for IKEv2), but I wasn't able to make it work with my IPv6 arrangements, either due to an error in my configuration or a bug. I didn't get a response via the list either, but nor did I pursue the matter further. IKEv2 is reputedly much better than IKEv1 and I would suggest using an implementation that offers good support for it. With OpenSWAN, the main problem was that it sometimes didn't correctly bind to my interfaces during the boot process, including the PPP interface which is brought up by the ADSL card. Apparently, StrongSWAN can dynamically detect network interfaces as they are brought up and down, which is why I looked closely at it.