[Swan] IKEv2 connection "no RSA public key known for" and "RSA authentication failed"

Tom Robinson tom.robinson at motec.com.au
Sat Nov 14 14:50:40 UTC 2015


On 14/11/15 22:58, Tuomo Soini wrote:
> On Sat, 14 Nov 2015 21:56:54 +1100
> Tom Robinson <tom.robinson at motec.com.au> wrote:
> 
> 
>> My apologies, I should have said earlier. We're running
>> libreswan-3.9-1 on CentOS 5.
> 
> That is all too old version. It doesn't have any support for this
> config. Upgrade to 3.13 which is last version which will work on
> centos-5.
> 
> I'd advice you to upgrade to centos-7 where libreswan is standard.
> 
Thanks Tuomo,

I have to support this older system for a few months more. I'm already
configuring a centos-7 replacement. I'll give 3.13 a try on centos-5
when I get a chance to compile it.

My other question was about having both IKEv2 and IPSec/L2TP connection
definitions on the same VPN server. Is that possible on 3.13 (or any
version)? I noticed with my L2TP connection sometimes responded to the
IKEv2 client request.

Kind regards,
Tom


More information about the Swan mailing list