[vpnc-devel] New ipsec-tools 0.5 with Cisco support

[jmvpnc at loplof.de]

I just read the announcement that the new ipsec-tools package has mode
config and xauth support now.

0.5     - 18 February 2005
        o Various NAT-T cleanups and fixes.
        o Small xauth config syntax change.
        o Rewritten buildsystem. Now completely autoconfed, automaked,
          libtoolized.
        o IPsec-tools now compiles on NetBSD and FreeBSD again.
        o Support for server-side hybrid authentication, with full
          RADIUS supoort. This is interoperable with the Cisco VPN client.
        o Support for client-side hybrid authentication (Tested only with
          a racoon server)
        o ISAKMP mode config support
        o IKE fragmentation support
        o Fixed FWD policy support.
        o Fixed IPv6 compilation.
        o Readline is optional, fixed setkey when compiled without readline.
        o Configurable Root-CA certificate.
        o Dead Peer Detection (DPD) support.

>From a short glance at the sources (http://ipsec-tools.sourceforge.net/)
it doesn't look like it can handle firewall settings any better than
vpnc can, but it *looks like* it can do rekeying and certificates. Can

Has anyone compared the two implementations with regard to features and
stability?

 Ciao
    Joerg
-- 
Joerg Mayer                                           <jmayer at loplof.de>
We are stuck with technology when what we really want is just stuff that
works. Some say that should read Microsoft instead of technology.