Ladies and gents,
I have a VPN box accepting connections. Sentinel has no problem getting in. When I configured FreeSWAN to FreeSWAN connection, i get this in /var/log/secure
#2: no RSA public key known for 'ipaddress'
May 6 08:53:58 bluespruce Pluto[20939]: "road" ipaddress #2: Peer ID is ID_IPV4_ADDR: 'ipaddress'
Please help ........
here are my ipsec.conf files from both sides:
GATEWAY MACHINE:
config setup
interfaces="ipsec0=eth1"
klipsdebug=none
plutodebug=none
plutoload=%search
plutostart=%search
uniqueids=yes
conn %default
keyingtries=1
keyexchange=ike
authby=rsasig
leftrsasigkey=%cert
rightrsasigkey=%cert
type=tunnel
left=wanip
leftnexthop=router
leftsubnet=10.0.0.0/24
ikelifetime=240m
keylife=60m
pfs=yes
compress=no
auto=add
disablearrivalcheck=no
conn road
right=%any
leftcert=bluespruce.coinfotech.com.pem
conn mike
right=ipaddress
rightcert=mflynn.coinfotech.com.pem
leftcert=bluespruce.coinfotech.com.pem
conn acacia
right=itsip
leftcert=bluespruce.coinfotech.com.pem
CLIENT BOX:
config setup
interfaces="ipsec0=eth0"
klipsdebug=none
plutodebug=none
plutoload=%search
plutostart=%search
uniqueids=yes
conn %default
keyingtries=1
keyexchange=ike
authby=rsasig
leftrsasigkey=%cert
rightrsasigkey=%cert
type=tunnel
right=wanip
rightnexthop=router
rightsubnet=192.168.168.0/24
ikelifetime=240m
keylife=60m
pfs=yes
compress=no
auto=add
disablearrivalcheck=no
conn mike
left=gatewaybox
leftcert=bluespruce.coinfotech.com.pem
leftrsasigkey=%cert
Big hug to the list :)
Vasiliy Boulytchev
Colorado Information Technologies Inc.
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:57 CEST