Note: This archive passes through spamassassin. Every mail marked with the subject "*****SPAM*****" has exceed a certain threshold of spam-like behaviour.

Re: [Users] PIX 515 <--> FreeSWAN 1.97 x509 (long post)

From: Igmar Palsenberg (i.palsenberg_at_jdimedia.nl)
Date: Thu Apr 25 2002 - 10:37:24 CEST

Next message: Atle Nissestad: "[Users] HELP!! Trouble building key_a extension, error=-22"
Previous message: Adrian Blockus: "Re: [Users] Problems with FreeSWAN and W2k using x509"
In reply to: John A. Sullivan III: "Re: [Users] PIX 515 <--> FreeSWAN 1.97 x509 (long post)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi,

> It looks like you'll need to use the leftid parameter. You can find
> information about it in the man pages. It will typically be your
> DER_ASN.1_DN, e.g.,
> "C=US,L=Maine,O=MyCompany,OU=MyDept,CN=John.Sullivan" unless you are
> using extended attributes with alt_subject_names.

The PIX 515 has either 2 options it seems : It's outside IP or or's FQDN.
In my case, the leftid="@pix.fqdn.ext" seems to do the trick.

>Hope this helps - John

It was the push in the right direction I needed. Next issue : Dealing with
the Config issue on the PIX.

Regards,

Igmar

Igmar Palsenberg JDI Media Solutions

Boulevard Heuvelink 102 6828 KT Arnhem The Netherlands

mailto: i.palsenberg_at_jdimedia.nl PGP/GPG key : http://www.jdimedia.nl/formulier/pgp/igmar

_______________________________________________ Users mailing list Users_at_lists.freeswan.org http://lists.freeswan.org/mailman/listinfo/users

Next message: Atle Nissestad: "[Users] HELP!! Trouble building key_a extension, error=-22"
Previous message: Adrian Blockus: "Re: [Users] Problems with FreeSWAN and W2k using x509"
In reply to: John A. Sullivan III: "Re: [Users] PIX 515 <--> FreeSWAN 1.97 x509 (long post)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:55 CEST