Hi,
This is probably a design question.
I am using freeS/WAN 1.97.
I would like the following configuration
A
\
C
/
B
A and B are road warriors and C is gateway and host.
A and B have the SAME identifier X and same public private key pair (I
don't want C to distinguish between A and B).
I am able to get A OR B to talk to C. But when the other road warrior is
started, the first connection is deleted by C with the (barf) message
May 11 13:09:44 hannibal-r Pluto[8414]: "myConn" 192.168.76.36
#3: deleting connection "myConn" instance with peer 192.168.76.32
May 11 13:09:44 hannibal-r Pluto[8414]: "myConn" #2: deleting state
(STATE_QUICK_R2)
192.168.76.36 being the 2nd RW to be started and 192.168.76.32 being the
first.
The FAQ says "each Road Warrior must have a different key or certificate".
I do not want to create separate connections for A and B nor do I want
to give them separate keys. It seems a workaround should be possible
especially since all my data flows from the road warriors TO C (none
back). I want only authentication (no encryption) and C has all necessary
information to authenticate A or B.
Please let me know if someone has encountered this problem or knows a
workaround. I am willing to patch the FreeS/WAN source code if that will
help.
If someone knows (FOR SURE!!!) that it can't be done, I would
like to know why.
Thanks in advance,
Swami.
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:58 CEST