[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: problem with isakmpd with certs
* Angelos D. Keromytis (email@example.com) [010105 23:04]:
> I think we may have a terminology mixup here. Your configuration for
> each of the machines should be as follows:
> For machine with IP address X:
> /etc/isakmpd/ca should contain the CA certificate (there's only one of
> /etc/isakmpd/certs should contain a file with a certificate whose
> SubjAltName is set to X; the file name does not
> /etc/isakmpd/private should contain the corresponding private key
> /etc/isakmpd/isakmpd.conf: the local Phase 1 ID should be X
I do not fully understand that. in my setup i have
so obviously I do not have ID set directly to 220.127.116.11, but to my-ID.
Is this enough?