[Swan] net-to-net for road warriors

Paul Wouters paul at nohats.ca
Thu Jan 24 20:25:36 UTC 2019

On Thu, 24 Jan 2019, Derek Cameron wrote:

> I did some experiments with Fedora 28. The instructions in the RHEL 7
> Security Guide, section 4.6.3, "Creating Host-To-Host VPN Using
> Libreswan," suggest you can just use:
> ipsec newhostkey
> I tried this, but it did not work. I got the problem that it cannot
> find its own key. Instead I had to use the form given in the "Host to
> host VPN" configuration example on the website, i.e.:
> ipsec newhostkey --output /etc/ipsec.secrets

Yes, please do this for now. It is a bug we are looking into.


More information about the Swan mailing list