[strongSwan] need help for host2host-cert setup

Abbhishek Misra abhishekfishy2000 at gmail.com
Wed Mar 24 14:01:17 CET 2010

 Hello All,

 I'm trying to setup  host2host-cert example but very basic steps are
 not going through.

 plm56:~/abhishek # ipsec up host-host
 initiating IKE_SA host-host[1] to
 generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) (NATD_D_IP) ]
 sending packet: from[500] to[500]
 received packet: from[500] to[500]
 parsed IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) (NATD_D_IP)
 no private key found for 'plm56.in.ibm.com'
 plm56:~/abhishek #

 I have used all conf files as mentioned in the example

 ipsec listcerts is not showing my certificates that i generated using
 this doc http://www.ipsec-howto.org/x595.html

 This is how my secrets file looks

        plm56:~/abhishek # cat /etc/ipsec.secrets
        # /etc/ipsec.secrets - strongSwan IPsec secrets file
        : RSA newkey.pem "abhishek"

 following is my dir listing                  http://pastebin.com/PZUgn6zQ

 this is my /etc/ssl/openssl.cnf          http://pastebin.com/w3v2zymm

 i have gone through
 and verified modulus for newcert.pem and newkey.pem

 Please take a look at these and let me know what more should I do to
 get through.

 Abhishek Misra

More information about the Users mailing list