That one's easy to fix. Cheers Tobias. John
On Tue, 2020-12-08 at 15:28 +0100, Tobias Brunner wrote: > Hi John, > > > It identified my strongswan client CORS89 but it thinks its an FQDN rather > > than and ID. > > > > In the ipsec.conf for leftid I used '@CORS89' and in the ipsec.secrets I > > also used @CORS89 > > so > > why would the Cisco think its a FQDN rather than just a key-id? > > Of course it's a FQDN, why would you think prefixing it with an @ > changes that? Please see [1]. > > Regards, > Tobias > > [1] https://wiki.strongswan.org/projects/strongswan/wiki/IdentityParsing