Hi Robert,
I do have more recent builds available for download at
http://www.dstuart.org/fwknop/
I just posted version 2.6.5 of both static and dynamically linked clients
and libfko.dll (compiled on a Windows 7 system).
Please try these and let me know if it works for you.
Regards,
-Damien Stuart
On Wed, Apr 22, 2015 at 3:45 PM, Robert Watson <[email protected]>
wrote:
> commented out HMAC key and added ENCRYPTION_MODE legacy to access.conf,
> still unable to connect..
>
> Apr 22 05:54:58 server.ourhome.net fwknopd[13458]: (stanza #1) SPA Packet
> from IP: 192.168.1.10 received with access source match
> Apr 22 05:54:58 server.ourhome.net fwknopd[13458]: SPA Packet:
> '+wvjPe0xiLs/XerTQYlfJgHAIbTlqqB1C9KvAgZ+g3mwQzGzBWsTDXr7u2Ch2+rzBgvl30gUiPXIUy0Gb74gGhInQ/aRbsNtWkfUygl/kkQBk0S0N9c5b
> Apr 22 05:54:58 server.ourhome.net fwknopd[13458]: [192.168.1.10] (stanza
> #1) Error creating fko context: Decryption failed or decrypted data is
> invalid
>
>
> On Tue, Apr 21, 2015 at 4:42 PM, Michael Rash <[email protected]>
> wrote:
>
>>
>> On Tue, Apr 21, 2015 at 11:30 AM, Robert Watson <[email protected]>
>> wrote:
>>
>>> I'm unable to connect to the fwknop server using either Reindahl or
>>> GnuPG using the windows client fwknop or the Morpheus UI. The windows
>>> fwknop client hasn't been updated for years. The server log captures the
>>> packet but then the packet can't be processed. Does anyone have a working
>>> configuration using a windows client. I think this may be a problem with
>>> HMAC encryption on the client side but haven't seen any guides on the HMAC
>>> encryption for the client.
>>> <http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual->
>>>
>>
>> The Morpheus UI is certainly way old (and development hasn't progressed
>> on a UI replacement), but you can get things working by making sure that on
>> the fwknopd server there is:
>>
>> 1) No HMAC key defined in the /etc/fwknop/access.conf file - this is
>> because the Morpheus client does not support an HMAC
>> 2) Set "ENCRYPTION_MODE legacy" in /etc/fwknop/access.conf.
>>
>> In terms of guides, the is some material on backwards compatibility here,
>> but I should probably extend it:
>>
>>
>> http://www.cipherdyne.org/fwknop/docs/fwknop-tutorial.html#backwards-compatibility
>>
>> Thanks,
>>
>> --Mike
>>
>>
>> ------------------------------------------------------------------------------
>> BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT
>> Develop your own process in accordance with the BPMN 2 standard
>> Learn Process modeling best practices with Bonita BPM through live
>> exercises
>> http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual-
>> event?utm_
>> source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF
>> _______________________________________________
>> Fwknop-discuss mailing list
>> [email protected]
>> https://lists.sourceforge.net/lists/listinfo/fwknop-discuss
>>
>>
>
>
> ------------------------------------------------------------------------------
> BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT
> Develop your own process in accordance with the BPMN 2 standard
> Learn Process modeling best practices with Bonita BPM through live
> exercises
> http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual-
> event?utm_
> source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF
> _______________________________________________
> Fwknop-discuss mailing list
> [email protected]
> https://lists.sourceforge.net/lists/listinfo/fwknop-discuss
>
>
------------------------------------------------------------------------------
BPM Camp - Free Virtual Workshop May 6th at 10am PDT/1PM EDT
Develop your own process in accordance with the BPMN 2 standard
Learn Process modeling best practices with Bonita BPM through live exercises
http://www.bonitasoft.com/be-part-of-it/events/bpm-camp-virtual- event?utm_
source=Sourceforge_BPM_Camp_5_6_15&utm_medium=email&utm_campaign=VA_SF
_______________________________________________
Fwknop-discuss mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/fwknop-discuss
