<html><head><meta name="Generator" content="Z-Push"><meta http-equiv="Content-Type" content="text/html; charset=utf-8"></head><body><br>On Jan 8, 2014, at 11:46 AM, "Kimmo K" <koippa@gmail.com> wrote:<br>> Yes, that is the first thing to solve. Did you copy your server's<br>> private key to /etc/ipsec.d/private?<br><br>Yes. When regenerated certs, copied server_priv.pem to private dir. Copied server_cert to certs dir. Copied cacert.pem to cacerts dir. <br><br>> What are the access rights to the file, you should give it something like<br>> chmod 400 servers-private-key.key<br><br>Just ran chmod 400 on servers priv key file.<br>> <br>> and then you should check that ipsec.secrets contains pointer in that key.<br>> my-ip other-ip : RSA server-key.key<br><br>: RSA server_priv.pem<br><br>Still no love.<br><br>If you have time and don't mind, we can do a join.me session and I will regenerate certs again. Maybe you will see something that I am doing wrong</body></html>