[strongSwan] policy missing in issuing certificate/no trusted RSA public key found/deleting IKE_SA
dams.benoist at gmail.com
Fri Jun 21 16:17:48 CEST 2013
I'm trying to start a vpn and I can't reach hosts inside it.
I get "No route to host" when trying to connect.
Below are some commands and their outputs.
I'm really in the dark, can someone enlighten me?
Thanks for your help.
When starting vpn connection I get the following log messages:
charon: 02[CFG] certificate status is not available
charon: 02[CFG] policy 126.96.36.199.188.8.131.52 missing in issuing certificate '...'
charon: 02[IKE] no trusted RSA public key found for '...'
charon: 02[IKE] deleting IKE_SA cnx between <local
charon: 02[IKE] sending DELETE for IKE_SA cnx
# ipsec up cnx
connection 'cnx' established successfully
# telnet <someHostIpInTheVPN> 443
telnet: Unable to connect to remote host: No route to host
# ipsec statusall
Security Associations (0 up, 0 connecting):
# ipsec --version
Linux strongSwan U5.0.4/K3.2.0-4-amd64
# cat ipsec.conf
# uniqueids = no
More information about the Users