Hi everyone. Trying to build ikev2 vpn between openbsd 5.1 and windows 7 via certificates. Windows stops at #13843 error message - "Invalid payload received". Iked -vd output has a 'sa_state: VALID -> ESTABLISHED' meaning that 2nd phase is ok but just before that line I have:
ca_getreq: no valid local certificate found What local cert does it mean? 'ikectl show ca certificates' output is ok - it returnes all the certs that I have installed/exported/imported on windows side Did install both obsd's and win7's certificates like ikectl ca caname certificate openbsdmachine create | install | export ikectl ca caname certificate win7machine create | install | export - just like it's said in the man page. Google has just one link for that queue - openbsd sources =) -- Best regards, Pavel Shvagirev skype: pavel.shvagirev
