The peer's certificate is expired. You can not work around that. You need to
get the administration of them to fix their certificate.
On 07.08.2017 17:11, Luca Arzeni wrote:
> Another small step:
> by adding the parameter:
>
> ike=3des-sha1-modp1024
>
> I got past to the previous problem. Now I
Another small step:
by adding the parameter:
ike=3des-sha1-modp1024
I got past to the previous problem. Now I got these logs (only relevant
part is attached):
===
Mon, 2017-08-07 16:33 06[CFG] added configuration 'home'
Mon, 2017-08-07 16:33 08[CF
Hi Noel,
thanks for your help.
I've set a Debian 9 pc, so I am now using Strongswan 5.5.1-4 as you
suggested. I cannot get 5.5.3 since is not available under debian. As a
bonus, now my linux kernel is 4.9.0-3.
This are my ipsec.conf (I followed your hints and semplified whatever I
could) and charo
Hi,
On 05.08.2017 02:27, Luca Arzeni wrote:
> [...]
> I'm on a debian jessie 8.0, openswan 2.6.37 and I need to migrate to
> StrongSWAN 5.2.1
You better get 5.5.3 right away. 5.2.1 is already pretty old.
> [...]
> ==
>
> Now I'm trying