Hi, I'm using KVpnc racoon + ipsec tools version 0.6.6. with KVpnc version 0.8.9 (using kde 3.5.8) on Ubuntu Gutsy.
I get the following error in the log when I try to connect. error: [racoon err] 2008-05-11 03:10:51: ERROR: unable to get local issuer certificate(20) at depth:0 SubjectName:/C=UK/O=XXXX/OU=XXXX/CN=IPSec for Bruce Eddy/[EMAIL PROTECTED] error: ERROR: the peer's certificate is not verified error: [racoon err] 2008-05-11 03:10:51: ERROR: the peer's certificate is not verified. error: There is a reason for stop connecting, terminating "racoon" process. I imported my certificates in the KVpnc wizard, and it was unclear whether or not it had been successful. Initially it gave a dialogue saying "failed to import certificate", but, on pressing cancel, a dialogue with the message "Successfully imported certificate". The following extract from the log shows it reporting both success and failure! debug: Auth selection: use certificate debug: P12 cert selection: cert type is PKCS12 debug: type: 0 debug: type: 1 debug: Process (openssl) started. debug: Certificate import: import password was requested, send it... debug: Certificate import: doCacert() debug: chmod of /etc/racoon/certs/mykeys_bruce.eddy.pem (go-rwx) started. debug: Certificate import: CA certificate successful extracted. debug: Certificate import: import password was requested, send it... debug: chmod of /etc/racoon/certs/ca_bruce.eddy.pem (go-rwx) started. debug: Certificate import: hash successful created. error: Certificate import: unable to load certificate 25972:error:0906D06C:PEM routines:PEM_read_bio:no start line:pem_lib.c:647:Expecting: TRUSTED CERTIFICATE debug: Certificate import: Link successful created. error: Certificate import: certificate could not be imported. error: Unable to load certificate! info: Import of "/home/bruce/BruceE-certs/BruceE/bruce.eddy.p12" (P12 certificate) was successful. A final possible oddity: /etc/racoon/certs/ca_bruce.eddy.pem is of 0 length. I hope you can help with this one. Bruce.
_______________________________________________ Kvpnc-user mailing list [email protected] https://mail.gna.org/listinfo/kvpnc-user
