-----BEGIN PGP SIGNED MESSAGE-----
On Sun, 12 May 2002, s.k. wrote:
> I've managed to install and configure Linux FreeS/WAN 1.97 / X.509 patch
> with PreShared Keys, but unable to do the same with RSA keys.
> The logs show:
> 02 loading secrets from "/etc/ipsec.secrets"
> 003 "/etc/ipsec.secrets" line 18: does not look numeric and name lookup
> failed "Private-Key"
> 003 "/etc/ipsec.secrets" line 18: unrecognized key format: (2048
> 003 "/etc/ipsec.secrets" line 40: unrecognized key format:
> 00:bc:b8:6e:30:bc:cf:fb:01:c0:cb:a9:b7:94:ba
If you are trying to use certificates, then take a look at this URL, from
the X.509 Installation and Configuration Guide:
www.strongsec.com/freeswan/install.htm#section_5.1
It specifies how you should declare RSA private key files using X.509
certificates. Also, take a look at Section 4.1 on configuring the FreeS/WAN
connections.
If this doesn't resolve the problem, can you post more details on the
tunnels you are trying to set up, your ipsec.conf file and perhaps even a
very edited ipsec.secrets file.
Sam Sgro
sam_at_freeswan.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.
iQCVAwUBPN27ikOSC4btEQUtAQEk0wP/WJ0+jvD+f60eJ3mm0gB0m7J9n10s7XtF
5PODc3gepU45yNQGHyRSIj5vKt6qaj2FKEK+jh5l24kSiEIVhqc7r4gO2y8xIlt5
DNb8GwVPDXDVn/N3dpOAS+p0qHcT5mWdr7CqAdxSeR6sQ6nigH7eWQXqXerNu1Ag
cfrXGCZi1w4=
=1mRA
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.3 : Mon Jul 29 2002 - 05:19:58 CEST