Fragnesia (CVE-2026-46300) overwrites the Linux page cache via XFRM ESP-in-TCP. The Dirty Frag workaround still applies, but IPsec hosts need to check side effects first.
Step-by-step guide to building an IKEv2 VPN server with strongSwan on CentOS 7, including certificate setup, firewall rules, and client configuration for iOS, macOS, Windows, and Android.
