<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html; charset=UTF-8" http-equiv="Content-Type">
</head>
<body text="#000066" bgcolor="#ffffff">
Hi Andreas,<br>
<br>
Yes you were right, I imported the p12 file from my firewall
incorrectly and lost the private key.<br>
My fault, sorry for wasting your time.<br>
<br>
Ondrej<br>
<br>
<br>
On 16.12.2009 07:51, Andreas Rehmer wrote:
<blockquote
cite="mid:alpine.LNX.2.00.0912160750460.16051@jnaq.vagen.grygnevs.qr"
type="cite">Hi,
<br>
<br>
for me its seemed that openswan is searching for the privat key from
the certificate. Did you modifiy the /etc/ipsec.secrets corectly?
<br>
<br>
Mit freundlichen Grüßen
<br>
<br>
Andreas Rehmer - IT
<br>
--------------
<br>
Tel.: 030/453081-506
<br>
<br>
<br>
<br>
<br>
teltarif.de Onlineverlag GmbH
<br>
Alt-Moabit 96c, 10559 Berlin
<br>
Tel: +49 (0)30 453 081-0
<br>
Fax: +49 (0)30 453 081-11
<br>
Mail: <a class="moz-txt-link-freetext" href="mailto:info@teltarif.de">mailto:info@teltarif.de</a>
<br>
WWW: <a class="moz-txt-link-freetext" href="http://www.teltarif.de">http://www.teltarif.de</a>
<br>
<br>
Geschäftsführer: Kai Petzke, Martin Müller
<br>
eingetragen beim Amtsgericht Berlin-Charlottenburg, HRB 70507
<br>
Umsatzsteuer-ID: DE201038407
<br>
<br>
Sie suchen Kunden mit hoher Bildung, hohem Einkommen und starkem
<br>
Interesse am E-Commerce?
<br>
Mit Werbung auf teltarif.de erreichen Sie diese Kunden!
<br>
weitere Informationen: <a class="moz-txt-link-freetext" href="http://www.teltarif.de/mediadaten">http://www.teltarif.de/mediadaten</a>
<br>
<br>
<br>
On Tue, 15 Dec 2009, Ondrej Valousek wrote:
<br>
<br>
<blockquote type="cite">Date: Tue, 15 Dec 2009 12:35:07
<br>
From: Ondrej Valousek <a class="moz-txt-link-rfc2396E" href="mailto:webserv@s3group.cz"><webserv@s3group.cz></a>
<br>
To: <a class="moz-txt-link-abbreviated" href="mailto:users@openswan.org">users@openswan.org</a>
<br>
Subject: [Openswan Users] NSS error on Centos-5
<br>
<br>
Hi all,
<br>
<br>
I am using openswan on Centos-5 and I am receiving strange errors when
connection to my Checkpoint firewall
<br>
<br>
Dec 15 12:14:06 ondar pluto[28792]: | emitting length of ISAKMP
Identification Payload (IPsec DOI): 72
<br>
Dec 15 12:14:06 ondar pluto[28792]: | started looking for secret for
O=seat..6fjwat, OU=users, CN=ondrejv-unix->193.85.188.82 of kind
PPK_RSA
<br>
Dec 15 12:14:06 ondar pluto[28792]: | actually looking for secret for
O=seat..6fjwat, OU=users, CN=ondrejv-unix->193.85.188.82 of kind
PPK_RSA
<br>
Dec 15 12:14:06 ondar pluto[28792]: | line 1: key type
PPK_RSA(O=seat..6fjwat, OU=users, CN=ondrejv-unix) to type PPK_RSA
<br>
Dec 15 12:14:06 ondar pluto[28792]: | 1: compared key (none) to
O=seat..6fjwat, OU=users, CN=ondrejv-unix / 193.85.188.82 -> 2
<br>
Dec 15 12:14:06 ondar pluto[28792]: | 2: compared key (none) to
O=seat..6fjwat, OU=users, CN=ondrejv-unix / 193.85.188.82 -> 2
<br>
Dec 15 12:14:06 ondar pluto[28792]: | line 1: match=2
<br>
Dec 15 12:14:06 ondar pluto[28792]: | best_match 0>2 best=0x94650e8
(line=1)
<br>
Dec 15 12:14:06 ondar pluto[28792]: | concluding with best_match=2
best=0x94650e8 (lineno=1)
<br>
Dec 15 12:14:06 ondar pluto[28792]: "Prague" #1: Can't find the private
key from the NSS CERT (err -8166)
<br>
<br>
FIPS is disabled on my system and my NSS database has no password.
<br>
I am bit lost about this problem (tried also googling around) so I am
happy for any advice.
<br>
Many thanks,
<br>
<br>
Ondrej
<br>
<br>
<br>
</blockquote>
<pre wrap="">
<fieldset class="mimeAttachmentHeader"></fieldset>
_______________________________________________
<a class="moz-txt-link-abbreviated" href="mailto:Users@openswan.org">Users@openswan.org</a>
<a class="moz-txt-link-freetext" href="http://lists.openswan.org/mailman/listinfo/users">http://lists.openswan.org/mailman/listinfo/users</a>
Building and Integrating Virtual Private Networks with Openswan:
<a class="moz-txt-link-freetext" href="http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155">http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155</a>
</pre>
</blockquote>
<br>
</body>
</html>