> Upon initiating the command "ipsec rsasigkey 1024", I get a "pubkey" > format that seems different from that of the examples I gather from the > docs. > For some reason, perhaps due to this "pubkey" value, I can't establish a > successful subnet-to-subnet VPN. Below is a snip of my generated > "pubkey" value. > > # RSA 1024 bits SR3K-VPN1 Tue Sep 10 11:53:55 2002 > # for signatures only, UNSAFE FOR ENCRYPTION > > #pubkey=0sAQNnQtCrwTIPX9+lBMZuGzaYulXNzFFlZmAC0HVPO19mqJd2Gbt38OLLp/nBFY > PyW+p+CKeoIVuWV7nxIZz/KovwQ4gmh3Ec3SUVFuQtRZY+htOWh28m5iaiIsH+w+TCxT3pdL > Jq+ScnrpZCOOQUhFaZVHUJB8B4tDbjEO9LMYt8UQ== > #IN KEY 0x4200 4 1 > AQNnQtCrwTIPX9+lBMZuGzaYulXNzFFlZmAC0HVPO19mqJd2Gbt38OLLp/nBFYPyW+p+CKeo > IVuWV7nxIZz/KovwQ4gmh3Ec3SUVFuQtRZY+htOWh28m5iaiIsH+w+TCxT3pdLJq+ScnrpZC > OOQUhFaZVHUJB8B4tDbjEO9LMYt8UQ== > # (0x4200 = auth-only host-level, 4 = IPSec, 1 = RSA) > ...... > ...... > > Is there something wrong with my "pubkey" above? I would also like to > send out my lengthy "ipsec barf" result if there's nothing wrong with > this "pubkey".
It looks OK to me. Why do you think it's broken? What shows up in your logs (/var/log/auth.log) when trying to initiate your subnet-subnet connection? You probably have a typo or minor error in ipsec.conf or ipsec.secrets on one side or the other...FreeS/WAN is *VERY* unforgiving about configuration errors :) Charles Steinkuehler http://lrp.steinkuehler.net http://c0wz.steinkuehler.net (lrp.c0wz.com mirror) ------------------------------------------------------- This sf.net email is sponsored by: OSDN - Tired of that same old cell phone? Get a new here for FREE! https://www.inphonic.com/r.asp?r=sourceforge1&refcode1=vs3390 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html