thanks a lot for that hint. Now it runs the way I planned :-)
You mentioned new versions of freeS/WAN and your patch. Do you have any
details about the release dates ?
Best Regards
Marc Tinnemeyer
On Thu, 28 Mar 2002 08:27:30 +0100
Andreas Steffen <andreas.steffen_at_zhwin.ch> wrote:
> Currently you can have several different private keys for roadwarrior
> connections only if you define them explicitly for each roadwarrior:
>
> "<DN of roadwarrior 1>" : RSA <private key 1>
>
> "<DN of roadwarrior 2>" : RSA <private key 2, might equal private key
> 1>
>
> ...
>
> where DN is a distinguished name of the form C=DE, ST=state, ...
>
> additionally you could then have a single anonymous definition for
> your existing rsasig tunnels:
>
> : RSA <default private key>
>
> Or the other way round: A single anonymous definition handling all
> your roadwarriors and an explicit definition for each of your
> tunnel connections using a second private key.
>
> What is not possible right now, are anonymous definitions of the kind:
>
> : RSA <private key 1>
>
> : RSA <private key 2>
>
> This will become reality in version 0.9.10 of the X.509 patch to
> be released concurrently with freeswan-1.97.
>
> Andreas
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:47 CEST