[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: isakmpd: unknown id type user_fqdn
On Jun 09 at 01:34, Hakan Olsson spoke:
> Ok, but note that Default-phase-1-ID is used for X509 certificate
> authentication, while you are using shared-key auth (the Authentication=
So where do I put the USER_FQDN? (At least it is known in the
> Yes, you still need a local ID for the VPN. Think "what's the local IP/net
> on this side of the tunnel".
> If you plan to go to a setup where the "Road-Warrior" uses a dynamic
> address, your entire config file can probably look just like this
Sorry. I should have told you the Road-Warrior is OpenBsd with
isakmpd. The Road-Warrior has no net behind it. It should run in a
host-net environment. It's ID is expected to be a USER_FQDN. The ID
of the IPsec-peer is a ip4 address.
Is it possible with OpenBsd isakmpd to have an ID of type USER_FQDN?