With the release of strongSwan 5.0.3, there is now a new xauth-noauth plugin that allows "fake" xauth authentication. (see http://www.strongswan.org/blog/2013/04/06/strongswan-5.0.3-released.html). Due to bugs in the iOS ipsec code, this authentication mode is critical to getting iOS to hold VPN connections over 45 minutes with strongSwan. (See discussions on the strongSwan mailing list). As it stands, this plugin is not built with storngSwan by default. It would be great if there was a USE flag to enable it.
The bug has been closed via the following commit(s): https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=37d5f0158443ad4ecfd78c4749f537f3488ef550 commit 37d5f0158443ad4ecfd78c4749f537f3488ef550 Author: Dennis Eisele <kernlpanic@dennis-eisele.de> AuthorDate: 2022-01-07 14:44:01 +0000 Commit: Florian Schmaus <flow@gentoo.org> CommitDate: 2022-01-07 15:05:49 +0000 net-vpn/strongswan: add xauth-noauth plugin USE Flag Closes: https://bugs.gentoo.org/465556 Signed-off-by: Dennis Eisele <kernlpanic@dennis-eisele.de> Closes: https://github.com/gentoo/gentoo/pull/23686 Signed-off-by: Florian Schmaus <flow@gentoo.org> net-vpn/strongswan/metadata.xml | 1 + net-vpn/strongswan/strongswan-5.9.4-r1.ebuild | 4 +++- 2 files changed, 4 insertions(+), 1 deletion(-)
