[strongSwan] left ID, right ID and no matching peer config

Tobias Brunner tobias at strongswan.org
Tue Apr 25 16:53:31 CEST 2017

Hi Piyush,

> while the rightID on server would be %any.

If you set `rightcert` this will cause `rightid` to default to the
subject DN of the certificate, which in turn won't match "client".  So
either set `rightid=client` or don't set `leftid` on the client so the
client's own identity defaults to the subject DN of the certificate.


More information about the Users mailing list