[Openswan Users] showhostkey no default key in ipsec.secrets

James james at nttmcl.com
Wed May 23 12:12:09 EDT 2007


Paul Wouters wrote:
> On Tue, 22 May 2007, James wrote:
>
>   
>> I have a fresh install of openswan in debian and let it run a self
>> signed key
>>
>> the key is in /etc/ipsec.d/private/host.pem
>>
>> the /etc/ipsec.secrets has
>> : RSA /etc/ipsec.d/private/host.pem
>>
>> i run
>> ipsec showhostkey --left
>>
>> and it gives
>> ipsec showhostkey: no default key in "/etc/ipsec.secrets"
>>     
>
> ipsec showhostkey shows the public key of a raw RSA key, not the public key
> within an X.509 certificate.
>
> Paul
>   
where do i find instructions for using an x.509 cert then?
Cause the documentation seems a bit abridged as for things go.

especially since if i don't know what the public key is i dunno how i'm 
gonna set the ipsec.conf file.

TIA


More information about the Users mailing list