[strongSwan] Problem using asymmetric keys against Cisco IOS

Tobias Brunner tobias at strongswan.org
Tue Dec 8 15:28:15 CET 2020

Hi John,

> It identified my strongswan client CORS89 but it thinks its an FQDN rather than and ID.
> In the ipsec.conf for leftid I used '@CORS89' and in the ipsec.secrets I also used @CORS89 so
> why would the Cisco think its a FQDN rather than just a key-id?

Of course it's a FQDN, why would you think prefixing it with an @
changes that?  Please see [1].


[1] https://wiki.strongswan.org/projects/strongswan/wiki/IdentityParsing

More information about the Users mailing list