| 12345 |
- By setting <b>strictcrlpolicy=yes</b> a <b>strict CRL policy</b> is enforced on
- both roadwarrior <b>carol</b> and gateway <b>moon</b>. When <b>carol</b> initiates
- an IPsec connection to <b>moon</b>, both VPN endpoints find a cached CRL in
- their <b>/etc/ipsec.d/crls/</b> directories which allows them to immediately verify
- the certificate received from their peer.
|
