On 2012-06-22 16:11, Jason White wrote:
Matthew Cengia <mattcen@gmail.com> wrote:
I also recently set up IPSec for the hell of it. I used racoon, because it seemed to be the neatest/purest implementation insofar as it made heavy use of the in-kernel stuff, and therefore didn't add much extra bloat to the system.
It doesn't support IKEv2 though, or has that changed? I think there was supposed to be a Racoon version 2 for that, but when I last checked (a while ago) it wasn't stable and didn't seem to be seeing much development.
I've not delved deep enough into the different key-exchange stuff to be sure yet, but Wikipedia indicates[1] that racoon, or at least racoon2, supports IKEv2. 1. https://en.wikipedia.org/wiki/Internet_Key_Exchange#Implementations -- Regards, Matthew Cengia