strongswan: An IPsec implementation for Linux1
strongSwan is an OpenSource IPsec implementation for the Linux operating
system.
It is based on the discontinued FreeS/WAN project and the X.509 patch which
we developped over the last three years. In order to have a stable IPsec
platform to base our future extensions of the X.509 capability on, we
decided to lauch the strongSwan project.
The focus is on:
- simplicity of configuration
- strong encryption and authentication methods
- powerful IPsec policies supporting large and complex VPN networks
strongSwan features includes:
- both on Linux 2.4 (KLIPS) and Linux 2.6 (native IPsec) kernels.
- Fast connection startup and periodic update using ipsec starter
- Automatic insertion and deletion of IPsec policy based firewall rules
- strong 3DES, AES, Serpent, Twofish, or Blowfish encryption
- NAT-Traversal (RFC 3947) and support of virtual IPs and IKE Mode Config
- Dead Peer Detection (DPD, RFC 3706) takes care of dangling tunnels
- Authentication based on X.509 certificates or preshared keys
- Authentication based on X.509 certificates or preshared keys
- Generation of a default self-signed certificate during first strongSwan startup
- Retrieval and local caching of Certificate Revocation Lists via HTTP or LDAP
- Full support of the Online Certificate Status Protocol (OCSP, RCF 2560)
- CA management (OCSP and CRL URIs, default LDAP server)
- Powerful IPsec policies based on wildcards or intermediate CAs
- Group policies based on X.509 attribute certificates (RFC 3281)
- Optional storage of RSA private keys and certificates on a smartcard
- Smartcard access via standardized PKCS #11 interface
- PKCS #11 proxy function offering RSA decryption services via whack
... part of T2,
get it here
URL: https://www.strongswan.org/
Author: Andreas Steffen <andreas [dot] steffen [at] zhwin [dot] ch>
Maintainer: T2 Project <t2 [at] t2-project [dot] org>
License: GPL
Status: Stable
Version: 6.0.0
Remark: Does cross compile (as setup and patched in T2).
Download: http://download.strongswan.org/ strongswan-6.0.0.tar.bz2
T2 source: strongswan.cache
T2 source: strongswan.conf
T2 source: strongswan.desc
T2 source: strongswan.init
Build time (on reference hardware): 45% (relative to binutils)2
Installed size (on reference hardware): 3.04 MB, 200 files
Dependencies (build time detected):
00-dirtree
bash
bzip2
coreutils
diffutils
findutils
gawk
gmp
grep
linux-header
m4
make
sed
tar
Installed files (on reference hardware):
[show]
etc/opt/strongswan
etc/opt/strongswan/ipsec.conf
etc/opt/strongswan/ipsec.d
etc/opt/strongswan/ipsec.d/aacerts
etc/opt/strongswan/ipsec.d/acerts
etc/opt/strongswan/ipsec.d/cacerts
etc/opt/strongswan/ipsec.d/certs
etc/opt/strongswan/ipsec.d/crls
etc/opt/strongswan/ipsec.d/ocspcerts
etc/opt/strongswan/ipsec.d/private
etc/opt/strongswan/ipsec.d/reqs
etc/opt/strongswan/strongswan.conf
opt/strongswan
opt/strongswan/doc
opt/strongswan/lib
opt/strongswan/lib/libstrongswan.a
opt/strongswan/lib/libstrongswan.la
opt/strongswan/lib/libstrongswan.so
opt/strongswan/lib/libstrongswan.so.0
opt/strongswan/lib/libstrongswan.so.0.0.0
opt/strongswan/libexec
opt/strongswan/libexec/ipsec
opt/strongswan/libexec/ipsec/_copyright
opt/strongswan/libexec/ipsec/_pluto_adns
opt/strongswan/libexec/ipsec/_updown
opt/strongswan/libexec/ipsec/_updown_espmark
opt/strongswan/libexec/ipsec/charon
opt/strongswan/libexec/ipsec/openac
opt/strongswan/libexec/ipsec/plugins
opt/strongswan/libexec/ipsec/plugins/libstrongswan-aes.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-aes.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-aes.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-aes.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-aes.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-des.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-des.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-des.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-des.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-des.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-fips-prf.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-fips-prf.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-fips-prf.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-fips-prf.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-fips-prf.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-gmp.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-gmp.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-gmp.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-gmp.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-gmp.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-hmac.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-hmac.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-hmac.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-hmac.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-hmac.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-kernel-netlink.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-kernel-netlink.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-kernel-netlink.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-kernel-netlink.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-kernel-netlink.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-ldap.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-ldap.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-ldap.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-ldap.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-ldap.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-md5.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-md5.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-md5.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-md5.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-md5.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-pubkey.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-pubkey.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-pubkey.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-pubkey.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-pubkey.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-random.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-random.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-random.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-random.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-random.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha1.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha1.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha1.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha1.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha1.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha2.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha2.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha2.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha2.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-sha2.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-stroke.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-stroke.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-stroke.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-stroke.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-stroke.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-updown.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-updown.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-updown.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-updown.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-updown.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-x509.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-x509.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-x509.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-x509.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-x509.so.0.0.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-xcbc.a
opt/strongswan/libexec/ipsec/plugins/libstrongswan-xcbc.la
opt/strongswan/libexec/ipsec/plugins/libstrongswan-xcbc.so
opt/strongswan/libexec/ipsec/plugins/libstrongswan-xcbc.so.0
opt/strongswan/libexec/ipsec/plugins/libstrongswan-xcbc.so.0.0.0
opt/strongswan/libexec/ipsec/pluto
opt/strongswan/libexec/ipsec/scepclient
opt/strongswan/libexec/ipsec/starter
opt/strongswan/libexec/ipsec/stroke
opt/strongswan/libexec/ipsec/whack
opt/strongswan/man
opt/strongswan/man/man3
opt/strongswan/man/man3/anyaddr.3
opt/strongswan/man/man3/atoaddr.3
opt/strongswan/man/man3/atoasr.3
opt/strongswan/man/man3/atosa.3
opt/strongswan/man/man3/atoul.3
opt/strongswan/man/man3/goodmask.3
opt/strongswan/man/man3/initaddr.3
opt/strongswan/man/man3/initsubnet.3
opt/strongswan/man/man3/keyblobtoid.3
opt/strongswan/man/man3/optionsfrom.3
opt/strongswan/man/man3/portof.3
opt/strongswan/man/man3/prng.3
opt/strongswan/man/man3/rangetosubnet.3
opt/strongswan/man/man3/sameaddr.3
opt/strongswan/man/man3/subnetof.3
opt/strongswan/man/man3/ttoaddr.3
opt/strongswan/man/man3/ttodata.3
opt/strongswan/man/man3/ttosa.3
opt/strongswan/man/man3/ttoul.3
opt/strongswan/man/man3/version.3
opt/strongswan/man/man5
opt/strongswan/man/man5/ipsec.conf.5
opt/strongswan/man/man5/ipsec.secrets.5
opt/strongswan/man/man8
opt/strongswan/man/man8/_copyright.8
opt/strongswan/man/man8/_updown.8
opt/strongswan/man/man8/_updown_espmark.8
opt/strongswan/man/man8/ipsec.8
opt/strongswan/man/man8/openac.8
opt/strongswan/man/man8/pluto.8
opt/strongswan/man/man8/scepclient.8
opt/strongswan/man/man8/starter.8
opt/strongswan/sbin
opt/strongswan/sbin/ipsec
var/adm/dependencies/strongswan
var/adm/descs/strongswan
var/adm/flists/strongswan
var/adm/md5sums/strongswan
var/adm/packages/strongswan
1) This page was automatically generated from the T2
package source. Corrections, such as dead links, URL changes or typos
need to be performed directly on that source.
2) Compatible with Linux From Scratch's
"Standard Build Unit" (SBU).