On Fri, 24 Nov 2006, kelvin wrote:
More or less, yes. See the IPsec RFC's for details.
It's better to either use no id='s or use both leftid= and
rightid=.
Don't juse leftid without a rightid.
> following is the configuration of each endpoint:
> pc1:
> conn a
> left=1.1.1.1
> right=1.1.1.2
> leftid= kelvin
> auth=rsasig
> leftrsasigkey=...
> rightrsasigkey=....
> auto=add
>
> pc2:
> conn b
> left=1.1.1.1 right=1.1.1.2
> leftid=kelvin
> auth=rsasig
> leftrsasigkey=...
> rightrsasigkey=....
> auto=add
> if pc1 initiate a connection to pc2, i want to know
what had happened when
> pc2 received the id payload which is sent by pc1.
>
> does pc2 decrypt this message and compare the value of
id payload which is
> sent by pc1 to the value of leftid in its ipsec.conf
file?
>
> and then?
>
>
--
Building and integrating Virtual Private Networks with
Openswan:
http://www.amazon.com/gp/product/1904811
256/104-3099591-2946327?n=283155
_______________________________________________
Usersopenswan.org
http
://lists.openswan.org/mailman/listinfo/users
Building and Integrating Virtual Private Networks with
Openswan:
http://www.amazon.com/gp/product/1904811
256/104-3099591-2946327?n=283155
|