[Openswan Users] issuer cacert not found
setyo adi raharjo
setyo.ar at garuda-indonesia.com
Thu May 8 20:34:09 EDT 2008
Yes, I did that both on server side and client side, but still find this
problem..
Thanks
setyo
-----Original Message-----
From: Paul Wouters [mailto:paul at xelerance.com]
Sent: 08 Mei 2008 20:24
To: setyo adi raharjo
Cc: users at openswan.org
Subject: Re: [Openswan Users] issuer cacert not found
On Thu, 8 May 2008, setyo adi raharjo wrote:
Add the CA cert you used to /etc/ipsec.d/cacerts/
Paul
> Date: Thu, 8 May 2008 16:03:07 +0700
> From: setyo adi raharjo <setyo.ar at garuda-indonesia.com>
> Cc: <setyo.ar at garuda-indonesia.com>
> To: <users at openswan.org>
> Subject: [Openswan Users] issuer cacert not found
>
> I want to connect to a VPN server linux using x.509 RSA configuration. But
I
> find this problem.. Any solution for this?
>
>
>
> STATE_MAIN_R1: sent MR1, expecting MI2
>
> May 7 10:23:46 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> NAT-Traversal: Result using 3: no NAT detected
>
> May 7 10:23:46 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> transition from state STATE_MAIN_R1 to state STATE_MAIN_R2
>
> May 7 10:23:46 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> STATE_MAIN_R2: sent MR2, expecting MI3
>
> May 7 10:23:47 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
Main
> mode peer ID is ID_DER_ASN1_DN: 'C=ID, ST=JAKARTA, L=JAKARTA, O=GARUDA,
> OU=QX, CN=LINUX, E=seti_83 at telkom.net'
>
> May 7 10:23:47 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> issuer cacert not found
>
> May 7 10:23:47 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
X.509
> certificate rejected
>
> May 7 10:23:47 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223: no
> suitable connection for peer 'C=ID, ST=JAKARTA, L=JAKARTA, O=GARUDA,
OU=QX,
> CN=LINUX, E=seti_83 at telkom.net'
>
> May 7 10:23:47 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> sending encrypted notification INVALID_ID_INFORMATIONto 61.5.68.52:500
>
> May 7 10:23:56 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
Main
> mode peer ID is ID_DER_ASN1_DN: 'C=ID, ST=JAKARTA, L=JAKARTA, O=GARUDA,
> OU=QX, CN=LINUX, E=seti_83 at telkom.net'
>
> May 7 10:23:56 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> issuer cacert not found
>
> May 7 10:23:56 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
X.509
> certificate rejected
>
> May 7 10:23:56 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223: no
> suitable connection for peer 'C=ID, ST=JAKARTA, L=JAKARTA, O=GARUDA,
OU=QX,
> CN=LINUX, E=seti_83 at telkom.net'
>
> May 7 10:23:56 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> sending encrypted notification INVALID_ID_INFORMATION to 61.5.68.52:500
>
> May 7 10:24:17 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
Main
> mode peer ID is ID_DER_ASN1_DN: 'C=ID, ST=JAKARTA, L=JAKARTA, O=GARUDA,
> OU=QX, CN=LINUX, E=seti_83 at telkom.net'
>
> May 7 10:24:17 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> issuer cacert not found
>
> May 7 10:24:17 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
X.509
> certificate rejected
>
> May 7 10:24:17 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223: no
> suitable connection for peer 'C=ID, ST=JAKARTA, L=JAKARTA, O=GARUDA,
OU=QX,
> CN=LINUX, E=seti_83 at telkom.net'
>
> May 7 10:24:17 mybox pluto[3023]: "roadwarrior"[221] 61.5.68.52 #223:
> sending encrypted notification INVALID_ID_INFORMATION to 61.5.68.52:500
>
>
>
> Thanks
>
>
>
> setyo
>
>
--
Building and integrating Virtual Private Networks with Openswan:
http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list