From: Andreas Steffen (andreas.steffen_at_strongsec.net)
Date: Wed Oct 23 2002 - 14:26:19 CEST
Ok, I found the error:
pluto[4510]: loading secrets from "/etc/ipsec.secrets"
pluto[4510]: loaded private key file
'/etc/ipsec.d/private/fishbowl.dyn.madduck.net.pem' (6924 bytes)
pluto[4510]: | file content is not binary ASN.1
pluto[4510]: | -----BEGIN CERTIFICATE-----
pluto[4510]: | -----END CERTIFICATE-----
pluto[4510]: | file coded in PEM format
pluto[4510]: | L0 - RSAPrivateKey:
pluto[4510]: | L1 - version: ASN1 tag 0x02 expected, but is 0x30
pluto[4510]: | 30 82 04 5e a0 03 02 01 02 02 01 05 30 0d 06 09
...
pluto[4510]: error in PKCS#1 private key
pluto[4510]: "/etc/ipsec.secrets" line 9: error loading RSA private key file
You tried to load an X.509 certificate instead of a PKCS#1 private key file.
The private key file is the one you created using
openssl genrsa -des3 -out private/myKey.pem 1024
Regards
Andreas
martin f krafft wrote:
> also sprach Andreas Steffen <andreas.steffen_at_strongsec.net> [2002.10.23.1330 +0200]:
>
>>I think that you have looked at the wrong log since the Pluto debugging
>>does not show up at all. With SuSE error messages show up both in
>>/var/log/warn and /var/log/messages, whereas the debugging output goes
>>into /var/log/messages only. Other Linux distributions have different
>>log files.
>
>
> doh! debian logs that to /var/log/auth.log. the relevant stuff,
> including additional errors, is attached.
>
-- ====================================================================== Andreas Steffen e-mail: andreas.steffen_at_strongsec.com strongSec GmbH phone: +41 76 340 25 56 Alter Zürichweg 20 home: http://www.strongsec.com CH-8952 Schlieren (Switzerland) ==========================================[strong internet security]== _______________________________________________ Users mailing list Users_at_lists.freeswan.org http://lists.freeswan.org/mailman/listinfo/users
This archive was generated by hypermail 2.1.5 : Thu Oct 24 2002 - 05:20:31 CEST