[Openswan Users] Openswan 2.1.1 not sending certificates (fwd)

Paul Wouters paul at xelerance.com
Thu Apr 1 18:23:56 CEST 2004

Marcus wrote:

> I have a setup with X.509 certificates between Linux clients and an
> OpenBSD security gateway. It works with FreeS/WAN 2.05 with the X.509
> patch, but does not work with Openswan 2.1.1.
> I am attaching the Pluto debug output from both versions. Everything
> looks identical up to the point where FreeS/WAN Pluto sends the "ISAKMP
> Certificate Payload". Openswan never sends this.

Marcus, can you send me your ipsec.conf on the client?

Perhaps you are not using rightca= to tell the other end about which 
Certificate Angecy you want to connect to. Recent changes no longer
allow the sending of an empty certificate request.

-------------- next part --------------
Users mailing list
Users at lists.openswan.org

More information about the Users mailing list