Add support for strongSwan (IPsec/IKEv2)
In order to have more options (protocols) to available when users are struggling with the Chinese Great FireWall, add support for strongSwan (https://www.strongswan.org/ & also more information on https://en.wikipedia.org/wiki/StrongSwan). StrongSwan clients are available for an ample range of operating systems (Windows, OS X, Linux, Android, FreeBSD). For Ubuntu users, the client present in their repositories. Also important, the software is open source and free to download! For PureVPN this would be an option to distinguish itself from other VPN providers.
Mark
shared this idea
-
Alexander Patrakov commented
Not really done:
1. There are MTU issues under Linux (big packets fail to come through the tunnel, I had to explicitly clamp PMTU to 1352).
2. The traffic stops flowing after ~512 MB of data, due to broken rekeying.
3. I need to pin the certificate, because StrongSwan does not trust otherwise-valid wildcard certificates unless pinned.
-
David Manouchehri
commented