[Openswan Users] x509 Certs
Chris Zimmerman
czimmer at wczimmerman.dyndns.org
Thu Aug 14 19:34:24 EDT 2008
I must be missing something:
If I have machine A and machine B and Machine A initiates an IPSec tunnel to
Machine B using x509 certs, is there an exchange of certs in the beginning
much like SSH does when you're connecting for the first time? In other
words, does machine A say, "Here's my certificate" and B likewise? How is
the cert verified with the CA?
I've been reading the Openswan book solid for the last 2 days and working
with a Watchguard device to set this up and I think I've garbled some of my
information.
Thanks.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/users/attachments/20080814/04e4e0a4/attachment.html
More information about the Users
mailing list