[Openswan Users] about the id payload
Paul Wouters
paul at xelerance.com
Fri Nov 24 15:02:00 EST 2006
On Fri, 24 Nov 2006, kelvin wrote:
More or less, yes. See the IPsec RFC's for details.
It's better to either use no id='s or use both leftid= and rightid=.
Don't juse leftid without a rightid.
> following is the configuration of each endpoint:
> pc1:
> conn a
> left=1.1.1.1
> right=1.1.1.2
> leftid=@kelvin
> auth=rsasig
> leftrsasigkey=...
> rightrsasigkey=....
> auto=add
>
> pc2:
> conn b
> left=1.1.1.1 right=1.1.1.2
> leftid=@kelvin
> auth=rsasig
> leftrsasigkey=...
> rightrsasigkey=....
> auto=add
> if pc1 initiate a connection to pc2, i want to know what had happened when
> pc2 received the id payload which is sent by pc1.
>
> does pc2 decrypt this message and compare the value of id payload which is
> sent by pc1 to the value of leftid in its ipsec.conf file?
>
> and then?
>
>
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list