[strongSwan] How to use the strongswan library as API calls to strongswan so

Hi My question is specific to the usage of the strongswan shared object which is generated after the build. All the documentation I see in the website is for using the strongswan command line utility only and for the IKE daemons but I also wanted to explore If I can use the strongswan

[strongSwan] Query on Child SA Creation

Hi I have a query on Child SA creation. I have a ipsec.conf configuration which has two very similar configurations listed .The only difference between them is the protocol (leftprotoport). Here is my ipsec.conf entry with the two configurations conn 211TO60Tunnel

Re: [strongSwan] Trying a basic peer to peer ipsec setup with strongswan and is failing due to some key related issue

How can I see explicit logs related to charon startup ? Try to start charon in the foreground using ipsec start --nofork Martin I ran the ipsec start --nofork command As you mentioned in your earlier reply the issue is indeed with loading the private key . It throws the following error

Re: [strongSwan] Trying a basic peer to peer ipsec setup with strongswan and is failing due to some key related issue

= no } --- One more info. I have generated the keys using openssl command . In that case is it required to load the openssl module in charon. ? Regards Shyam -Original Message- From: users-bounces+shyamsundar.purkayastha=wipro@lists.strongswan.org [mailto:users

Re: [strongSwan] Trying a basic peer to peer ipsec setup with strongswan and is failing due to some key related issue

PKI tool Even with this I get the same results and the same error message at ipsec start --nofork So what could be going wrong w.r.t key generation ? Regards Shyam -Original Message- From: users-bounces+shyamsundar.purkayastha=wipro@lists.strongswan.org [mailto:users-bounces

Re: [strongSwan] Trying a basic peer to peer ipsec setup with strongswan and is failing due to some key related issue

PKI tool Even with this I get the same results and the same error message at ipsec start --nofork So what could be going wrong w.r.t key generation ? Regards Shyam -Original Message- From: users-bounces+shyamsundar.purkayastha=wipro@lists.strongswan.org [mailto:users-bounces

Re: [strongSwan] Trying a basic peer to peer ipsec setup with strongswan and is failing due to some key related issue

On 20.04.2010 12:11, shyamsundar.purkayas...@wipro.com wrote: But I have a new error when I try to bring up my configuration [r...@localhost ~]# ipsec up 211TO60Tunnel initiating IKE_SA 211TO60Tunnel[3] to 10.201.114.178 generating IKE_SA_INIT request 0 [ SA KE No N(NATD_S_IP) N(NATD_D_IP) ]

Re: [strongSwan] Trying a basic peer to peer ipsec setup with strongswan and is failing due to some key related issue

Ok How can I see explicit logs related to charon startup ? During ipsec start I did not see and errors. Regards Shyam -Original Message- From: Martin Willi [mailto:mar...@strongswan.org] Sent: Monday, April 19, 2010 9:49 PM To: Shyamsundar Purkayastha (WT01 - Telecom Equipment) Cc: