On Thu, May 31, 2012 at 12:18 +0200, Peter J. Philipp wrote:
> My iked config looks like this:
>
> ikev2 "win7" passive esp \
> from 172.16.20.0/24 to 0.0.0.0/0 local any peer any \
> srcid 10.0.0.1 \
> eap "mschap-v2" \
> config address 172.16.20.1 \
> conf
On Thu, May 31, 2012 at 12:47 +0200, Peter J. Philipp wrote:
> On Thu, May 31, 2012 at 12:28:47PM +0200, Mike Belopuhov wrote:
> > > My iked config looks like this:
> > >
> >
> > do you have a "user" specification in your iked.conf?
> > which user are you trying to authenticate as?
> > "user" spe
On Thu, May 31, 2012 at 12:28:47PM +0200, Mike Belopuhov wrote:
> > My iked config looks like this:
> >
>
> do you have a "user" specification in your iked.conf?
> which user are you trying to authenticate as?
> "user" specification occupies a separate line and looks
> like that:
>
> user "usern
On Thu, May 31, 2012 at 12:18 +0200, Peter J. Philipp wrote:
> On Tue, May 29, 2012 at 01:55:45PM +0200, Mike Belopuhov wrote:
> > On Wed, May 16, 2012 at 17:30 +0400, Pavel Shvagirev wrote:
> > > 2. Doesn't work EAP mode - Windows stops on "Checking username and
> > > password" error. Then #13803,
On Tue, May 29, 2012 at 01:55:45PM +0200, Mike Belopuhov wrote:
> On Wed, May 16, 2012 at 17:30 +0400, Pavel Shvagirev wrote:
> > 2. Doesn't work EAP mode - Windows stops on "Checking username and
> > password" error. Then #13803, 1931...
>
> Hi,
>
> Just to mention it for those not following sou
On Wed, May 16, 2012 at 17:30 +0400, Pavel Shvagirev wrote:
> 2. Doesn't work EAP mode - Windows stops on "Checking username and
> password" error. Then #13803, 1931...
Hi,
Just to mention it for those not following source-changes@
that there was a bug in the message ID handling that prevented
EA
On Wed, May 16, 2012 at 10:00 PM, Peter J. Philipp wrote:
> On Mon, May 14, 2012 at 12:53:34PM +0200, Mike Belopuhov wrote:
>> 4) Install the server certificate on the server:
>>
>>ikectl ca vpn certificate 10.1.0.1 install
>>
>> 5) To export the client certificate in a ZIP'ed PFX format, you
On Mon, May 14, 2012 at 12:53:34PM +0200, Mike Belopuhov wrote:
> 4) Install the server certificate on the server:
>
>ikectl ca vpn certificate 10.1.0.1 install
>
> 5) To export the client certificate in a ZIP'ed PFX format, you need
>to install zip utility (pkg_add -i zip).
>
>ikect
On Wed, May 16, 2012 at 17:30 +0400, Pavel Shvagirev wrote:
>
> Thank you very much for the detailed reply. It helped a lot, though I
> have something to add.
>
> > 6) Transfer 10.5.0.1.zip to the Windows host and load the certificates
> >by doubleclicking on them.
> You should not import the
Thank you very much for the detailed reply. It helped a lot, though I
have something to add.
> 6) Transfer 10.5.0.1.zip to the Windows host and load the certificates
>by doubleclicking on them.
You should not import the cert by doubleclicking on it - it will import
to the current user's facili
On Fri, May 11, 2012 at 20:39 +0400, Pavel Shvagirev wrote:
> Hi everyone.
>
> Trying to build ikev2 vpn between openbsd 5.1 and windows 7 via
> certificates. Windows stops at #13843 error message - "Invalid payload
> received". Iked -vd output has a 'sa_state: VALID -> ESTABLISHED'
> meaning that
Hi,
I take a entire week to try ikev2 between a win7 road warrior and an
OpenBSD 5.1 gateway.
All in following the man pages of ikectl, iked, and iked.conf.
It doesn't work for me... Bugs ?
Perhaps, certainly because, iked is not yet finished.
So i keep isakmpd and the GreenBowVPN.
Good luck
Hi everyone.
Trying to build ikev2 vpn between openbsd 5.1 and windows 7 via
certificates. Windows stops at #13843 error message - "Invalid payload
received". Iked -vd output has a 'sa_state: VALID -> ESTABLISHED'
meaning that 2nd phase is ok but just before that line I have:
ca_getreq: no valid
13 matches
Mail list logo
