You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardexpand all lines: README.md
+2-2
Original file line number
Diff line number
Diff line change
@@ -24,8 +24,8 @@ This project contains the source code for an unofficial Linux client for Check P
24
24
* Certificate authentication via provided client certificate (PFX, PEM, or HW token)
25
25
* HW token support via PKCS11 (only with IPSec tunnel)
26
26
* GTK frontend with tray icon
27
-
* SSL tunnel via Linux TUN device
28
27
* IPSec tunnel via Linux native kernel XFRM interface or TCPT/TUN transport
28
+
* SSL tunnel via Linux TUN device (deprecated in favour of IPSec/TCPT)
29
29
* Store passwords in the keychain using Secret Service API
30
30
* Automatic IPSec tunnel reconnection without authentication (via optional parameter)
31
31
@@ -72,7 +72,7 @@ By default, it will use kernel IPSec infrastructure with UDP-based tunnel over p
72
72
In some environments those ports may be blocked by the firewall, in this case use the `ike-transport=tcpt` and `esp-transport=tcpt` options
73
73
to tunnel IPSec traffic over TCP port 443. Note that TCPT transport is slower than native IPSec over UDP.
74
74
75
-
For older VPN Servers or in case they don't have IPSec enabled, the legacy SSL tunnel can be used as well, selected with `tunnel-type=ssl`.
75
+
For older VPN servers or in case they don't have IPSec enabled, the legacy SSL tunnel can be used as well, selected with `tunnel-type=ssl`.
76
76
SSL tunnel has a limited support for authentication types: no browser-based SSO, no hardware token support, no MFA in combination with the certificates.
0 commit comments