[Openswan Users] no RSA public key problem
Paul Wouters
paul at xelerance.com
Mon Jun 20 19:37:46 EDT 2011
On Mon, 20 Jun 2011, Florian Harmuth wrote:
>> You're missing a leftcert=/etc/ipsec.d/certs/yourcert.pem
>
> This happens while adding the connection with whack (local.crt).
>
>>> whack --name server --host 192.168.60.201 --cert local.crt --nexthop
>>> %direct --to --host %any --rsasig
nexthop %direct and --host %any is clearly wrong. Direct means "in the
same lan, don't use routing".
I would also use a full pathname, and now assume "cwd" is what you
think it is, as whack communications via a socket to pluto, which has
its cwd set based on dumpdir=
Paul
More information about the Users
mailing list