ims-volte-vowifi
/
strongswan
9
0
Fork 0
Code Pull Requests Releases Activity

updated documentation on leftsendcert

This commit is contained in:
Andreas Steffen 2009-06-06 16:23:42 +02:00 committed by Martin Willi
parent b6f19a6ab4
commit 123fdf700a
2 changed files with 8 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
README
View File

@ -1510,7 +1510,11 @@ the other side. In these cases it is recommended to add
to the connection definition[s] in order to avoid the sending of the host's to the connection definition[s] in order to avoid the sending of the host's
own certificate. The default value is own certificate. The default value is
leftsendcert=always. leftsendcert=ifasked
If a peer does not send a certificate request then use the setting
leftsendcert=always
If a peer certificate contains a subjectAltName extension, then an alternative If a peer certificate contains a subjectAltName extension, then an alternative
rightid type can be used, as the example "conn sun" shows. If no rightid rightid type can be used, as the example "conn sun" shows. If no rightid

2
src/pluto/constants.h
View File

@ -703,7 +703,7 @@ extern enum_names cert_type_names;
extern enum_name_t *cert_policy_names; extern enum_name_t *cert_policy_names;
typedef enum certpolicy { typedef enum certpolicy {
CERT_ALWAYS_SEND = 0, /* the default */ CERT_ALWAYS_SEND = 0,
CERT_SEND_IF_ASKED = 1, CERT_SEND_IF_ASKED = 1,
CERT_NEVER_SEND = 2, CERT_NEVER_SEND = 2,