From: QingLong (QingLong_at_Bolizm.ihep.su)
Date: Thu Aug 29 2002 - 09:49:19 CEST
Hello!
I am trying to setup multiple tunnels in a set of hosts.
At the moment I would like to avoid using DNS for rsa keys distribution,
I just want the keys to be supplied in local configuration files,
but I wish them to be contained in a somewhat optimized manner.
As a public key is an immanent property of a host (rather than connection),
thus one could guess that it must be enough to attribute that key
to that host only once (e.g. in a way like ssh used it to).
But AFAICS it's not possible now: one has to put the same pubkey for the host
in ipsec.conf (via (left|right)rsasigkey) repeatitively in each conn section
that the host belongs to.
Is there any way to squeeze that repetitions?
Maybe there is a way to assign a pubkey an ID of some sort
and use it later in (left|right)rsasigkey statements?
Thank You.
QingLong.
_______________________________________________
Users mailing list
Users_at_lists.freeswan.org
http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.4 : Thu Aug 29 2002 - 12:20:18 CEST