It turns out that I did some copy&paste action when I was creating the [peer-ID] section. And even if there were no extra blank characters anywhere (I was careful to check that multiple times), somehow something was still messing with the parser. Brackets or =, something must have looked fine on screen yet the character code or something was wrong. I didn't follow through on that.
The solution? Delete the whole section and retype it again exactly the way it was - by hand. Grrr, wasted 5 hours on this. Thanks for all suggestions off-list. Regards, Mitja > -----Original Message----- > From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] > On Behalf Of Mitja Mu>enih > Sent: Tuesday, August 30, 2005 11:41 AM > To: misc@openbsd.org > Subject: Re: isakmpd: section has no "ID-type" tag > > I don't want to be annoying but I have people breathing down my back. > > Does anyone at all have a working [peer-ID] section in isakmpd.conf? > > I mean something similar to: > > [ABCD-peer] > Phase=1 > Transport=udp > Address=aaa.bbb.ccc.ddd > Configuration=ABCD-main-mode > ID=ABCD-ID > Authentication=xxxxxxxx > > [ABCD-ID] > ID-type=USER_FQDN > Name=yyyyyyyyyyyyyy > > No matter what I put in ID-type tag, I get > > 001543.959050 Default ipsec_id_size: section ABCD-ID has no > "ID-type" tag > > No spaces or other additional characters anywhere. Is this a > bug in parser? > > > i386, on 3.6-stable and -current.