mirror of https://github.com/apache/cloudstack.git
4d42845853
According to ipsec.conf manual: pfs whether Perfect Forward Secrecy of keys is desired on the connection's keying channel (with PFS, penetration of the key-exchange protocol does not compromise keys negotiated earlier); Since there is no reason to ever refuse PFS, Openswan will allow a connection defined with pfs=no to use PFS anyway. Acceptable values are yes (the default) and no. Found removing the option would make it impossible to work with no PFS setting router. It may related to CS-15511. |
||
|---|---|---|
| .. | ||
| systemvm/debian | ||
| .classpath | ||
| .project | ||