FAQ: Difference between revisions

From Libreswan
Jump to navigation Jump to search
mNo edit summary
Line 20: Line 20:
* [https://tools.ietf.org/html/rfc2409#section-5.3 IKEv1 Revised Mode]
* [https://tools.ietf.org/html/rfc2409#section-5.3 IKEv1 Revised Mode]
* [https://tools.ietf.org/html/draft-ietf-ipsec-isakmp-hybrid-auth-05 IKEv1 Hybrid Mode (aka "Mutual Group Authentication")] although there is some [https://github.com/libreswan/libreswan/tree/master/contrib/checkpoint-hybrid unmaintained contributed code]
* [https://tools.ietf.org/html/draft-ietf-ipsec-isakmp-hybrid-auth-05 IKEv1 Hybrid Mode (aka "Mutual Group Authentication")] although there is some [https://github.com/libreswan/libreswan/tree/master/contrib/checkpoint-hybrid unmaintained contributed code]
== Is Libreswan vulnerable to the OpenSSL "Heartbleed" exploit? ==
No, see [[Libreswan_and_Heartbleed]]


== Module unloading error on shutdown or restart: Module esp4 is in use  ==
== Module unloading error on shutdown or restart: Module esp4 is in use  ==

Revision as of 22:06, 10 April 2014

FAQ

( we will sort this in categories once we have more )

Which IKE Exchange modes does libreswan support?

The IANA Registry lists all official Exchange Modes. There are a few IKEv1 Modes that are very common despite never gotten past the draft stage.

Supported:

Not supported

Is Libreswan vulnerable to the OpenSSL "Heartbleed" exploit?

No, see Libreswan_and_Heartbleed

Module unloading error on shutdown or restart: Module esp4 is in use

ERROR: Module xfrm4_mode_tunnel is in use
ERROR: Module esp4 is in use
FAILURE to unload NETKEY esp4/esp6 module

This has been fixed in libreswan-3.9. Please upgrade

Retrieved from "https://libreswan.org/wiki/index.php?title=FAQ&oldid=20200"