[Swan] [EXTERNAL] Re: unable to locate my private key for RSA Signature
giuseppe.lauria at axa-winterthur.ch
Thu Jan 31 17:18:27 UTC 2019
Thank you very much Paul and Kostya .
I was able to fix this problem. I have a running tunnel.
Thank you very much.
Now I'll try it with certificates.
Von: Paul Wouters <paul at nohats.ca>
Gesendet: Mittwoch, 30. Januar 2019 21:38
An: LAURIA Giuseppe <giuseppe.lauria at axa-winterthur.ch>
Cc: swan at lists.libreswan.org
Betreff: [EXTERNAL] Re: [Swan] unable to locate my private key for RSA Signature
On Wed, 30 Jan 2019, LAURIA Giuseppe wrote:
> We are using libreswan between two different RedHat Servers and want
> to do host-to-host transport tunnel encryption to port 8080.
> I initialized NSS DB
> ipsec initnss
> I created two new keys on each box
> ipsec newhostkey
Please for now use: ipsec newhostkey --output /etc/ipsec.d/yourconn.secrets
due to a bug, it is neccessary to have the secrets file to find our raw RSA keys :(
More information about the Swan