[strongSwan] strongswan gateway does not send hash-link of its own certificate

[Tobias Brunner]

Hi Mike,

> gateway ipsec.conf:
> 
> ca %default
>   certuribase=http://hashandurl.my-server.de/
>   auto=add

If that's the only ca section in your config this won't work.  The
%default section is never loaded itself it only provides defaults for
other sections of the same type.  Also, defining a certuribase without a
cacert is useless (as seen on the roadwarrior).

Regards,
Tobias