strongSwan KVM Tests / ikev2 / wildcards
Test ikev2/wildcards
Description
The VPN gateway moon controls the access to the hosts alice and venus by means of wildcard parameters that must match the subject Distinguished Name contained in the peer's X.509 certificate. Access to alice is granted for DNs containing a OU=Research field whereas venus can only be reached with a DN containing OU=Accounting. The roadwarriors carol and dave belong to the departments 'Research' and 'Accounting', respectively. Therefore carol can access alice and dave can reach venus.