[Openswan Users] Host to Host with RSA Key size of 5120 is not working in version 2.6.49
kasi viswanathan
kviswanathan.83 at gmail.com
Wed Feb 1 07:56:26 EST 2017
Hi all,
I am trying to configure VPN between two hosts using RSA with a key
size of 5120 bits and the connection is not getting established.
Pls see the below logs from both the hosts:
Left host:
-------------
authpriv.warn pluto[3690]: "left" #2: Main mode peer ID is
ID_IPV4_ADDR: '192.168.1.119'
authpriv.warn pluto[3690]: "left" #2: Signature check (on
192.168.1.119) failed (wrong key?); tried *AQPexthsS
authpriv.warn pluto[3690]: "left" #2: sending encrypted notification
INVALID_KEY_INFORMATION to 192.168.1.119:500
Right host:
---------------
authpriv.warn pluto[4234]: "right" #2: Signature check (on
192.168.1.110) failed (wrong key?); tried *AQNoouueV
authpriv.warn pluto[4234]: "right" #2: sending encrypted notification
INVALID_KEY_INFORMATION to 192.168.1.110:500
FYI, the connection is getting established when the key size is 4096
bits or below this .
Openswan version used is 2.6.49 and target processor is ARM9.
Pls let me know how to fix this.
Thanks,
Kasiviswanathan.V
More information about the Users
mailing list