Posted by: Anonymous Coward
on September 29, 2005 12:30 AM
Do you know why FreeS/Wan (ex-Openswan code) was never included in the mainstream Linux kernel (and why D. Miller prefered to rewrite the stack himself) ?
Because it was an ugly mess of bad spaghetti code.
OpenS/Wan inherit all those deficiences in the remaining parts (IKE). So : don't get fooled by this very very bad implementation. Please, give a try to KAME's ipsec-tools (racoon) or OpenBSD's isakmpd: IPsec suddently look far easier. And far more powerfull than OpenVPN.
Learn about Linux
Download Linux
Get Linux help
OpenS/Wan : bad example !
Posted by: Anonymous Coward on September 29, 2005 12:30 AMBecause it was an ugly mess of bad spaghetti code.
OpenS/Wan inherit all those deficiences in the remaining parts (IKE). So : don't get fooled by this very very bad implementation. Please, give a try to KAME's ipsec-tools (racoon) or OpenBSD's isakmpd: IPsec suddently look far easier. And far more powerfull than OpenVPN.
#