Hi all,
has anybody setup an VPN between CP VPN-1 R60 HFA03 and Linux OpenSwan?
We try to setup this vpn with certificats.
I've build a trustedCA, which is a system on the vpn partner site. Then
generate a certificate request for my cluster object, this request is
signed by my vpn partners ca, i got the result and complete the
certificate request successful.
On the interoperable device object --> VPN --> Matching criteria i use
the trustedCA as "Gateway must present a certificate issued by CA",
without matching DN, IP-Address or e-mail.
By vpn tunnel initiate we got the error message: IKE: Quick Mode
Received Notification from Peer: invalid key Information
Has anybody a successful example, how to setup an certificate based vpn
between CP and OpenSwan with an external CA?
Joerg
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
