[Swan-dev] Different subCA issue
Tuomo Soini
tis at foobar.fi
Tue Dec 8 18:03:29 UTC 2015
On Mon, 7 Dec 2015 10:31:25 -0500 (EST)
Paul Wouters <paul at nohats.ca> wrote:
>
> Tuomo described a case that failed:
>
> conn A
> rightca=ROOTCA1
> rightid=@someone
> also=common
> conn B
> rightca=SUBROOTCA1
> rightid=@someoneelse
> also=common
While code might be wrong it actually finds correct connection. I found
a wrong ip address on initiator config, it used wrong ip on responder -
that caused it to fail in finding correct config.
--
Tuomo Soini <tis at foobar.fi>
Foobar Linux services
+358 40 5240030
Foobar Oy <http://foobar.fi/>
More information about the Swan-dev
mailing list