<span class="gmail_quote"></span>
<div>Hi, everyone</div>
<div> </div>
<div> When I create X.509-based connections as the <strong>Packt.Publishing.Building.And.Integrating.Virtual.Private.Networks.With.Openswan.Jan.2006.pdf</strong>, it generate this error message:</div>
<div> </div>
<div>Nov 14 12:58:35 localhost ipsec__plutorun: Starting Pluto subsystem...<br>Nov 14 12:58:35 localhost pluto[11364]: Starting Pluto (Openswan Version 2.4.6 X.509-1.5.4 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR; Vendor ID OEN|EMqk_Mlg)
<br>Nov 14 12:58:35 localhost pluto[11364]: Setting NAT-Traversal port-4500 floating to off<br>Nov 14 12:58:35 localhost pluto[11364]: port floating activation criteria nat_t=0/port_fload=1<br>Nov 14 12:58:35 localhost pluto[11364]: including NAT-Traversal patch (Version
0.6c) [disabled]<br>Nov 14 12:58:35 localhost pluto[11364]: WARNING: Open of /dev/hw_random failed in init_rnd_pool(), trying alternate sources of random<br>Nov 14 12:58:35 localhost pluto[11364]: WARNING: Using /dev/urandom as the source of random
<br>Nov 14 12:58:35 localhost pluto[11364]: ike_alg_register_enc(): Activating OAKLEY_AES_CBC: Ok (ret=0)<br>Nov 14 12:58:35 localhost pluto[11364]: no helpers will be started, all cryptographic operations will be done inline
<br>Nov 14 12:58:35 localhost pluto[11364]: Using KLIPS IPsec interface code on 2.6.15-prep<br>Nov 14 12:58:35 localhost pluto[11364]: Changing to directory '/etc/ipsec.d/cacerts'<br>Nov 14 12:58:35 localhost pluto[11364]: Changing to directory '/etc/ipsec.d/aacerts'
<br>Nov 14 12:58:35 localhost pluto[11364]: Changing to directory '/etc/ipsec.d/ocspcerts'<br>Nov 14 12:58:35 localhost pluto[11364]: Changing to directory '/etc/ipsec.d/crls'<br>Nov 14 12:58:35 localhost pluto[11364]: Warning: empty directory
<br>Nov 14 12:58:35 localhost pluto[11364]: loaded host cert file '/etc/ipsec.d/certs/east.cert' (1021 bytes)<br>Nov 14 12:58:35 localhost pluto[11364]: loaded host cert file '/etc/ipsec.d/certs/west.cert' (1021 bytes)
<br>Nov 14 12:58:35 localhost pluto[11364]: added connection description "subnet-subnet"<br>Nov 14 12:58:35 localhost pluto[11364]: listening for IKE messages<br>Nov 14 12:58:35 localhost pluto[11364]: adding interface ipsec0/eth0
<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://172.16.1.121:500/" target="_blank"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 172.16.1.121:500</a><br>Nov 14 12:58:35 localhost pluto[11364]: loading secrets from "/etc/ipsec.secrets"
<br>Nov 14 12:58:35 localhost pluto[11364]: loaded private key file '/etc/ipsec.d/private/west.key' (963 bytes) <br>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: initiating Main Mode<br>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: received Vendor ID payload [Openswan (this version)
2.4.6 X.509-1.5.4 PLUTO_SENDS_VENDORID PLUTO_USES_KEYRR]<br>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: received Vendor ID payload [Dead Peer Detection]<br>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: transition from state STATE_MAIN_I1 to state STATE_MAIN_I2
<br>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: STATE_MAIN_I2: sent MI2, expecting MR2<br>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: I am sending my cert<br>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: I am sending a certificate request
<br><font color="#ff0000"><strong>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: unable to locate my private key for RSA Signature</strong></font><br>Nov 14 12:58:36 localhost pluto[11364]: "subnet-subnet" #1: sending notification AUTHENTICATION_FAILED to
<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://172.16.12.141:500/" target="_blank"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 172.16.12.141:500</a><br>Nov 14 12:58:46 localhost pluto[11364]: "subnet-subnet" #1: I am sending my cert
<br>Nov 14 12:58:46 localhost pluto[11364]: "subnet-subnet" #1: I am sending a certificate request <br>Nov 14 12:58:46 localhost pluto[11364]: "subnet-subnet" #1: unable to locate my private key for RSA Signature
<br>Nov 14 12:58:46 localhost pluto[11364]: "subnet-subnet" #1: sending notification AUTHENTICATION_FAILED to <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://172.16.12.141:500/" target="_blank"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font>
172.16.12.141:500</a><br>Nov 14 12:59:06 localhost pluto[11364]: "subnet-subnet" #1: I am sending my cert<br>Nov 14 12:59:06 localhost pluto[11364]: "subnet-subnet" #1: I am sending a certificate request
<br>Nov 14 12:59:06 localhost pluto[11364]: "subnet-subnet" #1: unable to locate my private key for RSA Signature<br>Nov 14 12:59:06 localhost pluto[11364]: "subnet-subnet" #1: sending notification AUTHENTICATION_FAILED to
<a onclick="return top.js.OpenExtLink(window,event,this)" href="http://172.16.12.141:500/" target="_blank"><font color="red"><b>MailScanner warning: numerical links are often malicious:</b></font> 172.16.12.141:500</a><br> </div>
<div> </div>
<div>What's wrong with me? Thank you in advance.</div><br clear="all">