[Openswan Users] Re: Simultaneous RSASig and PSK

Chris Hudlet chudlet at rxelite.com
Wed Jul 21 12:05:24 CEST 2004


Thanks for the reply.  Yup I am aware that site to site can use RSA as well
but the firewalls in my remote offices are Zywall boxes and are only capable
of PSK.  For all I have read, certs appear to be the only really long-term
manageable and secure solution for XP road warriors.

Thanks again


-----Original Message-----
From: users-bounces at lists.openswan.org
[mailto:users-bounces at lists.openswan.org] On Behalf Of
users-request at lists.openswan.org
Sent: Wednesday, July 21, 2004 4:00 AM
To: users at lists.openswan.org
Subject: Users Digest, Vol 8, Issue 35

Send Users mailing list submissions to
	users at lists.openswan.org

To subscribe or unsubscribe via the World Wide Web, visit
or, via email, send a message with subject or body 'help' to
	users-request at lists.openswan.org

You can reach the person managing the list at
	users-owner at lists.openswan.org

When replying, please edit your Subject line so it is more specific
than "Re: Contents of Users digest..."

Today's Topics:

   1. Re: Simultaneous RSASig and PSK? (Salvatore Basso)


Message: 1
Date: Wed, 21 Jul 2004 11:45:50 +0200
From: "Salvatore Basso" <sasab at pixteam.com>
Subject: Re: [Openswan Users] Simultaneous RSASig and PSK?
To: "Nate Carlson" <natecars at natecarlson.com>,
	<users at lists.openswan.org>
Message-ID: <021801c46f07$8246d1b0$0f00000a at pix.locale>
Content-Type: text/plain;	charset="iso-8859-1"

----- Original Message ----- 
From: "Nate Carlson" <natecars at natecarlson.com>
To: <users at lists.openswan.org>
Sent: Tuesday, July 20, 2004 7:24 PM
Subject: Re: [Openswan Users] Simultaneous RSASig and PSK?

> On Tue, 20 Jul 2004, Chris Hudlet wrote:
> > I know this question has been asked before, but there have been a few
> > revisions out since I last saw the answer.  Does 2.1.4 support PSK and
> > RSASig (roadwarriors) at the same time like was introduced with 1.0.3?  
> > If not, do we know when that feature will be included?  I would really
> > like to be able to support Site-to-Site and road warriors on the same
> > box.  I asked this question on IRC, but no response.  Anyone?
> Not sure what the answer is to your specific question, but you are aware 
> that you can also use RSASig for site to site, right?
Hi, I have a box-linux with ipsec configuration for site-to-site and
road-warriors, now I use RSASig for site-to-site anche PSK for road-warrior
(road-warrior not functionally but for a diefferent problem, if you are
interesting you can to see thread with subject "Problem with connection
for road-warrior I use:
and for site-to-site I use:
You must consider what XP vpn client use only psk and certificate and not
use rsasig for road-warrior !


[This E-mail scanned for viruses by Declude Virus]


Users mailing list
Users at lists.openswan.org

End of Users Digest, Vol 8, Issue 35

More information about the Users mailing list