Hi Piyush, > while the rightID on server would be %any.
If you set `rightcert` this will cause `rightid` to default to the subject DN of the certificate, which in turn won't match "client". So either set `rightid=client` or don't set `leftid` on the client so the client's own identity defaults to the subject DN of the certificate. Regards, Tobias _______________________________________________ Users mailing list Users@lists.strongswan.org https://lists.strongswan.org/mailman/listinfo/users
