unsubscribe
On Thu, Oct 11, 2018 at 5:29 AM Alex wrote:
> Hi Paul, I'm still having trouble and could really use some help. Do
> these errors mean anything?
>
> Oct 10 21:21:33.289300: | #5 in state PARENT_I2: sent v2I2, expected v2R2
> Oct 10 21:21:33.289303: | Unpacking clear payload for svm:
Hi Paul, I'm still having trouble and could really use some help. Do
these errors mean anything?
Oct 10 21:21:33.289300: | #5 in state PARENT_I2: sent v2I2, expected v2R2
Oct 10 21:21:33.289303: | Unpacking clear payload for svm: Initiator:
process INVALID_SYNTAX AUTH notification
Oct 10
I don't understand this error:
Oct 8 22:30:01.939114: "oriontun" #3: IKEv2 mode peer ID is ID_FQDN:
'@arcade-orion'
Oct 8 22:30:01.939222: "oriontun" #3: Signature check (on
@arcade-orion) failed (wrong key?); tried *AwEAAePbb
Oct 8 22:30:01.939234: "oriontun" #3: Digital Signature
Hi,
> > At least the second one was created on this host but has now
> > disappeared. How do I delete those broken keys without having to
> > remove the whole database? What could cause this to happen?
>
> certutil -F -d sql:/etc/ipsec.d -n 34127e44f0718fc6d6ad34c089db926e1bb4d7df
>
> use the
HI,
> > At least the second one was created on this host but has now
> > disappeared. How do I delete those broken keys without having to
> > remove the whole database? What could cause this to happen?
>
> certutil -F -d sql:/etc/ipsec.d -n 34127e44f0718fc6d6ad34c089db926e1bb4d7df
>
> use the
On Mon, 8 Oct 2018, Alex wrote:
I'm still having difficulty and really don't know what to do. Somehow
the private keys have disappeared:
private keys cannot just "disappear". But if you do not load a
connection with leftcert= then the cert or key won't show up
in the listall output.
At
Hi,
I realized I only sent this to you directly last time. I'm still
having trouble and hoped someone could help.
> The config file you posted used leftckaid= and you said you copied it to both
> sides which wouldn’t work. Can you confir you are trying only with
> leftrsasigkey and
The config file you posted used leftckaid= and you said you copied it to both
sides which wouldn’t work. Can you confir you are trying only with
leftrsasigkey and rightrsasigkey ? If that still fails send me output using
plutodebug=all and fresh certutil / showhostkey output
Sent from my phone