Instead of logger, special printf() functions are used to directly
print objects like hosts (%H) identifications (%D), certificates (%Q),
etc. The number of debugging levels have been reduced to:
-
+
0 (audit), 1 (control), 2 (controlmore), 3 (raw), 4 (private)
-
+
The debugging levels can either be specified statically in ipsec.conf as
config setup
- charondebug="lib 1, cfg 3"
+ charondebug="lib 1, cfg 3, net 2"
- or changed dynamically via stroke as
+ or changed at runtime via stroke as
- ipsec stroke --debug-lib 1 --debug-cfg 3
+ ipsec stroke loglevel cfg 2
strongswan-4.0.4