Hello, Thank for your answer.
The thing is when i try to copy the public key generated by Vyatta on Cisco, i have an error message on cisco at the firrst non-hexadecimal characters. This is because Cisco accepts only hexadecimal characters in the public key field. crypto key pubkey-chain rsa addressed-key 100.0.0.1 key string Then, Cisco says " Enter a public key as a hexadecimal characters" the problem is that Vyatta generates its public in ASCII Is it possible to generate the Vyatta public key in hexa? thanks ---------- Original Message ---------------------------------- From: "Stig Thormodsrud" <[EMAIL PROTECTED]> Date: Mon, 1 Oct 2007 08:47:41 -0700 (PDT) >Hi Troopy, > > > >Im not sure about the cisco error, but on the vyatta side the rsa config >would like something like: > > > >set vpn ipsec site-to-site peer <x.x.x.x> authentication mode rsa > >set vpn ipsec site-to-site peer <x.x.x.x> authentication rsa-key-sig ><tunnel-name> > >set vpn rsa-keys rsa-key-name <tunnel-name> rsa-key >0sAQNwHJia0mD+fNH1uR4vWFlX44UaZEGgVfzWh+IGJlfN3Uw4eFBIL0/vtrRY0U/hkbmbDENj >kTKwY6XtOYK9OPpzOfc5b6fNkY4/7sx9az8Fx19eR4CuGqoNnQveOGVmuNnBDdtYmEKDA4595R >kuZ6wBRV6SoTrHmTe+TRpsitH4UCBWrgaou1RnEWj1zsZsezZhbr5VRDX+ydDgdO9hrtRsREgH >h+kYecPVvIRQqms0PZrLuOKyDVI5/zGt1T224VTtaRqsu8UlIYehvlq+k5XrQGhzE9Dxz8kOon >jWnwDMiFly88ZF1f4yDnaZH2JeATER+1aPGSMkJ9DUTnFBAtPvJAVec9+ItGAdjYvhkcpkOahC >6ZK1CSUnnhwAMrDSt5Pz/3oLKjzDMCVIeSuDVCSZz7nnAEBl/JM2+riPqJNaY/ORE1R5xhYnNY >lEZTRMytmbDGA+sSsUliEcMR55c549GoCzOQFfhk9Tqfs/R4RL6Ih9WGejtJ8PrpI81VkTTb3v >QwnKPLUdrd2LmlgnfkCf+ubxz+Mc4Jl4myZ8SVR4iJUNR7jsQLHmwNJwB8GmLfmSUCLPnKDQT0 >VFt3z7Xte14EWteCYKfN0HUBNWM0ofgrhJxSKuOa5MtA3Y9HZZpYIAHxeJbJa0AYXxQy2y6q9F >abBrhURETcuXnlmsQ7SKJw== > > > >stig > > > >> Hello, > >> > >> I have 2 questions concerning vyatta rsa mode: > >> > >> 1. RSA−Encrypted Authentication > >> > >> I am trying to establish a IPSec Tunnel in "RSA−Encrypted > >> Authentication" mode betwwen Cisco and Vyatta. > >> > >> when i try to copy the Vyatta rsa public key on cisco, there is an >error > >> message because Cisco seems to use only hexadecmial caracteres > >> > >> > >> 2. RSA−SIG Authentication/CA > >> > >> Is there a vyatta RSA−SIG Authentication/CA mode? > >> > >> something like the following Cisco config: > >> > >> crypto isakmmp policy 1 > >> authentification rsa-sig > >> > >> Thanks > >> > >> Troopy > >> > >> > >> ______________________________________________________ > >> Désirez vous une adresse éléctronique @suisse.com? > >> Visitez la Suisse virtuelle sur http://www.suisse.com > >> > >> _______________________________________________ > >> Vyatta-users mailing list > >> Vyatta-users@mailman.vyatta.com > >> http://mailman.vyatta.com/mailman/listinfo/vyatta-users > > > ______________________________________________________ Désirez vous une adresse éléctronique @suisse.com? Visitez la Suisse virtuelle sur http://www.suisse.com _______________________________________________ Vyatta-users mailing list Vyatta-users@mailman.vyatta.com http://mailman.vyatta.com/mailman/listinfo/vyatta-users
