Features

Previous  Next

---

Since this Client Software intends to track ipsec-tools development, it offers a similar option set for configuring Internet Key Exchange negotiations.

A number of peer authentication methods and basic XAuth for user authentication. Radius XAuth user authentication is not supported at this time.

Firewall Traversal Options

    

·    NAT Traversal

·    NAT Keep Alive

·    IKE Fragmentation

·    Packet Pre Fragmentation

Authentications Methods

    

·    Hybrid RSA + XAuth

·    Mutual RSA + XAuth ( ipsec-tools cvs only )

·    Mutual PSK + XAuth ( ipsec-tools cvs only )

·    Mutual RSA

·    Mutual PSK

RSA Identification Types

    

·    asn1dn

PSK Identification Types

    

·    FQDN

·    UFQDN

·    address

Exchange Modes

    

·    Main

·    Aggressive

·    Modecfg

·    Quick

·    Informational

Phase1 Ciphers

    

·    AES

·    Blowfish

·    3DES

·    CAST

·    DES

Phase1 Hash Algorithms

    

·    MD5

·    SHA1

Phase2 Transforms

    

·    ESP-AES

·    ESP-Blowfish

·    ESP-3DES

·    ESP-CAST

·    ESP-DES

Phase2 HMAC Algorithms

    

·    HMAC-MD5

·    HMAC-SHA1

Phase2 Options

    

·    PFS is supported

·    Compression is not supported

·    Tunnel mode is supported

·    Transport mode is not supported

Mode Config Attributes

    

·    Address

·    Netmask

·    DNS Server

·    Banner

·    Default Domain ( ipsec-tools cvs only )

·    WINS/NBNS Server

·    Split Network Include List ( ipsec-tools cvs only )

·    Split Network Exclude List ( ipsec-tools cvs only )