'[IPCop-devel] 1.4.0b6 VPN corrupted certificates'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       ipcop-devel
Subject:    [IPCop-devel] 1.4.0b6 VPN corrupted certificates
From:       Sean Patrick <spatuality () yahoo ! ca>
Date:       2004-07-26 16:54:21
Message-ID: 20040726165421.16630.qmail () web14926 ! mail ! yahoo ! com
[Download RAW message or body]

Hello list,

Has anyone seen a problem in their ipsec logs showing
errors with the X.509 certificates? I'm not sure if
this is affecting the vpn connections, but it seems
"pluto" fails to start when this x.509 certificate
error is in the logs.

Below is an excerpt of part of my log file, with the
x.509 cert error about 5 lines down from the top.


11:18:55 pluto[15310] OpenPGP certificate file
'/etc/pgpcert.pgp' not found
11:18:55 pluto[15310] loaded crl file 'cacrl.pem' (751
bytes)
11:18:54 pluto[15310] Changing to directory
'/etc/ipsec.d/crls'
11:18:54 pluto[15310] loaded cacert file 'cacert.pem'
(1814 bytes)
11:18:54 pluto[15310] error in X.509 certificate
11:18:54 pluto[15310] loaded cacert file 'cakey.pem'
(1679 bytes)
11:18:54 pluto[15310] Changing to directory
'/etc/ipsec.d/cacerts'
11:18:54 pluto[15310] ike_alg_register_enc():
Activating OAKLEY_SSH_PRIVATE_65289: Ok (ret=0)
11:18:54 pluto[15310] ike_alg_register_enc():
Activating OAKLEY_TWOFISH_CBC: Ok (ret=0)
11:18:54 pluto[15310] ike_alg_register_hash():
Activating OAKLEY_SHA2_512: Ok (ret=0)
11:18:54 pluto[15310] ike_alg_register_hash():
Activating OAKLEY_SHA2_256: Ok (ret=0)
11:18:54 pluto[15310] ike_alg_register_enc():
Activating OAKLEY_SERPENT_CBC: Ok (ret=0)
11:18:54 pluto[15310] ike_alg_register_enc():
Activating OAKLEY_CAST_CBC: Ok (ret=0)
11:18:54 pluto[15310] ike_alg_register_enc():
Activating OAKLEY_BLOWFISH_CBC: Ok (ret=0)
11:18:54 pluto[15310] ike_alg_register_enc():
Activating OAKLEY_AES_CBC: Ok (ret=0)
11:18:54 pluto[15310] including NAT-Traversal patch
(Version 0.6)
11:18:54 pluto[15310] including X.509 patch with
traffic selectors (Version 0.9.41)
11:18:54 pluto[15310] Starting Pluto (Openswan Version
1.0.6)
11:18:54 ipsec_setup ...Openswan IPsec started
11:18:54 ipsec__plutorun Starting Pluto subsystem...

Any ideas?

Brian

---


______________________________________________________________________ 
Post your free ad now! http://personals.yahoo.ca


-------------------------------------------------------
This SF.Net email is sponsored by BEA Weblogic Workshop
FREE Java Enterprise J2EE developer tools!
Get your free copy of BEA WebLogic Workshop 8.1 today.
http://ads.osdn.com/?ad_id=4721&alloc_id=10040&op=click
_______________________________________________
IPCop-devel mailing list
IPCop-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/ipcop-devel
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic