[Openswan Users] no RSA public key problem

Paul Wouters paul at xelerance.com
Mon Jun 20 19:37:46 EDT 2011

On Mon, 20 Jun 2011, Florian Harmuth wrote:

>> You're missing a leftcert=/etc/ipsec.d/certs/yourcert.pem
> This happens while adding the connection with whack (local.crt).
>>> whack --name server --host --cert local.crt --nexthop
>>> %direct --to --host %any --rsasig

nexthop %direct and --host %any is clearly wrong. Direct means "in the
same lan, don't use routing".

I would also use a full pathname, and now assume "cwd" is what you
think it is, as whack communications via a socket to pluto, which has
its cwd set based on dumpdir=


More information about the Users mailing list