Similar to this question, I want to configure an IPsec server on Linux which will accept connections from the iPhone. However, unlike the other question, I want to be able to test with pre-shared keys before making the jump to certificates.
According to this page, this can't work with StrongSwan because it doesn't support aggressive mode (and will never support it, according to the FAQ). So this question is limited in scope to OpenSwan.
I have not been able to find an OpenSwan or StrongSwan configuration that works with pre-shared key authentication on the iPhone client.
Note that I do NOT want to use L2TP.
Can anyone provide an ipsec.conf
configuration that is known to be working?