Some issues have been identified with the ipsec-tools racoon daemon which
could potentially cause problems in certain situations. Here is a brief list ...
- Responder
ignores initial fragmented message ( patch committed )
- The split_network
local_lan support is broken ( patch committed )
- Re-assignment
of mode_cfg addresses while old sa's exist
- Will generate
inappropriate policies for anonymous sainfo ( documented )
Shew Soft has made substantial contributions to the ipsec-tools project and will
continue to submit patches for problems related to Client Operation.