[Openswan Users] "unable to locate my private key for RSA Signature"
Leto
letoams at gmail.com
Fri Aug 9 18:29:27 UTC 2013
add authby=secret
sent from a tiny device
On 2013-08-09, at 13:47, Kevin Wilson <wkevils at gmail.com> wrote:
> Hello,
> I installed today openswan on Fedora 18.
> I use a simple secrets file with PSK:
>
> cat /etc/ipsec.secrets
>
>
> 192.168.1.7 192.168.1.200 : PSK "123456789"
>
> And my /etc/ipsec.conf is also very simple:
>
> conn linux-to-linux
> right=192.168.1.7
> left=192.168.1.200
> type=tunnel
> auto=start
>
> I did not any tweaking with other conf files.
>
> When I run
> systemctl start ipsec.service
> I get"
> Main PID: 8060 (sh)
> CGroup: name=systemd:/system/ipsec.service
> ââ8060 /bin/sh -c eval `/usr/libexec/ipsec/pluto --config
> /etc/ipsec.conf --nofork $PLUTO_OPTIONS`
> ââ8061 /bin/sh -c eval `/usr/libexec/ipsec/pluto --config
> /etc/ipsec.conf --nofork $PLUTO_OPTIONS`
> ââ8062 /usr/libexec/ipsec/pluto --config /etc/ipsec.conf --nofork
> ââ8087 _pluto_adns
>
> Aug 09 20:45:18 n pluto[8062]: "linux-to-linux" #1: STATE_MAIN_I2:
> sent MI2, expecting MR2
> Aug 09 20:45:18 n pluto[8062]: "linux-to-linux" #1: I will NOT send an
> initial contact payload
> Aug 09 20:45:18 n pluto[8062]: "linux-to-linux" #1: unable to locate
> my private key for RSA Signature
> Aug 09 20:45:18 n pluto[8062]: "linux-to-linux" #1: sending
> notification AUTHENTICATION_FAILED to 192.168.1.200:500
> Aug 09 20:45:28 n pluto[8062]: "linux-to-linux" #1: I will NOT send an
> initial contact payload
> Aug 09 20:45:28 n pluto[8062]: "linux-to-linux" #1: unable to locate
> my private key for RSA Signature
> Aug 09 20:45:28 n pluto[8062]: "linux-to-linux" #1: sending
> notification AUTHENTICATION_FAILED to 192.168.1.200:500
> Aug 09 20:45:48 n pluto[8062]: "linux-to-linux" #1: I will NOT send an
> initial contact payload
> Aug 09 20:45:48 n pluto[8062]: "linux-to-linux" #1: unable to locate
> my private key for RSA Signature
> Aug 09 20:45:48 n pluto[8062]: "linux-to-linux" #1: sending
> notification AUTHENTICATION_FAILED to 192.168.1.200:500
> [root at n ~]#
>
>
>
> Any idea what is the "unable to locate my private key for RSA
> Signature" error ?
>
> rgs
> Kevin
> _______________________________________________
> Users at lists.openswan.org
> https://lists.openswan.org/mailman/listinfo/users
> Micropayments: https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
> Building and Integrating Virtual Private Networks with Openswan:
> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
More information about the Users
mailing list