[Swan] How to configure RSA (not preshared key) on HA(High Available) machines ?

ChenHao earthlovepython at outlook.com
Thu Jan 21 21:47:27 UTC 2016

Hi All:
I have configured pre-shared as authentication on HA machines. I also have known how to configure rsasig on standalone machine.
Now customer want to support rsasig on HA machine.  Can I just copy public key (/etc/ipsec.secrets) and private key (/etc/ipsec.d/*.db) from ACTIVE to overwrite corresponding configuration on STANDBY ? Then after HA switch over, peer can still connect to our HA?

Thanks and regards
Hao Chen 		 	   		  
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.libreswan.org/pipermail/swan/attachments/20160121/d77dfd44/attachment.html>

More information about the Swan mailing list