[strongSwan] need help for host2host-cert setup

Abbhishek Misra abhishekfishy2000 at gmail.com
Wed Mar 24 14:04:33 CET 2010

Hello All,

Sorry for a messed up mail earlier.

I'm trying to setup  host2host-cert example but very basic steps are
not going through.

plm56:~/abhishek # ipsec up host-host
initiating IKE_SA host-host[1] to
generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ]
sending packet: from[500] to[500]
received packet: from[500] to[500]
parsed IKE_SA_INIT response 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP)
no private key found for 'plm56.in.ibm.com'
plm56:~/abhishek #

I have used all conf files as mentioned in the example

ipsec listcerts is not showing my certificates that i generated using
this doc http://www.ipsec-howto.org/x595.html

This is how my secrets file looks

       plm56:~/abhishek # cat /etc/ipsec.secrets
       # /etc/ipsec.secrets - strongSwan IPsec secrets file
       : RSA newkey.pem "abhishek"

following is my dir listing                  http://pastebin.com/PZUgn6zQ

this is my /etc/ssl/openssl.cnf          http://pastebin.com/w3v2zymm

i have gone through
and verified modulus for newcert.pem and newkey.pem

Please take a look at these and let me know what more should I do to
get through.

Abhishek Misra

More information about the Users mailing list