From: Sam Sgro (sam_at_freeswan.org)
Date: Sun Aug 18 2002 - 21:15:25 CEST
-----BEGIN PGP SIGNED MESSAGE-----
On Sat, 17 Aug 2002, Bret Hughes wrote:
> On Sat, 2002-08-17 at 10:40, Sam Sgro wrote:
> > -----BEGIN PGP SIGNED MESSAGE-----
> >
> >
> > > I seem to remember from the docs that there can only be one road warrior
> > > connection and I guess this is why they all have to share the same one?
> > >
> > > BUMMER.
> >
> > Not at all! If you're using RSA keys, then you use the left/rightid
> > parameter to distinguish between multiple Roadwarrior connections (and
> > thus, multiple public keys).
>
> Hmmm. I guess it is back to the docs for me. It sounds like I could
> have multiple connetions defined that all would allow connections from
> any ip but with different left or right ids and of course differnt
> keys.
Exactly; just read over the current iteration of the config doc here:
http://www.freeswan.org/freeswan_snaps/CURRENT-SNAP/doc/config.html#16_3
The use of leftid/rightid is fairly straightforward; You use an (arbitrary)
FQDN to identify each side of the connection. Don't forget to use the
"@" sign: that tells pluto not to resolve the name, just to use it as an
identifier.
Sam Sgro
sam_at_freeswan.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv
Comment: For the matching public key, finger the Reply-To: address.
iQCVAwUBPV/yTkOSC4btEQUtAQFvhQQA2X0rlC6G6RK1y46CJsyasoHl8YuY/27P
s8hLbpcGaLg5UMrbYfmJXwLRl5qKFxSFc93RSCyFYoI0MFtuwrnWMmQq7gjPQl8E
iFY3B4xe24kdhgNpnYJXmXZu9nxXPYlOzG7d8NgH7qsSb/Ee3T+7EF6fGlDwBeyf
A/lTUC+Vz7A=
=/2bZ
-----END PGP SIGNATURE-----
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.4 : Mon Aug 19 2002 - 00:19:45 CEST