<div dir="ltr">Hi All,<br><br><br>I am getting an below warning <br> <br>Pluto ipsec.secret syntax INTERNAL ERROR - unknown rcode:WARNING<br>003 "/etc/ipsec.d/secrets/
1207277490.secrets" line 1: WARNING: The :RSA secrets entries for X.509 certificates are no longer needed<br><br>my secrets file entry:- <br>[root@cucm-117 ~]# cat /etc/ipsec.d/secrets/1207277490.secrets<br>: RSA "ipsec-db"<br><br><br>I am using libreswan-3.20-3.el7.x86_64 and this is my /etc/ipsec.conf file<br>version 2.0 # conforms to second version of ipsec.conf specification<br><br># basic configuration<br>config setup<br> # For Red Hat Enterprise Linux, leave protostack=netkey<br> protostack=netkey<br> # plutodebug=crypt control controlmore pfkey dpd<br> plutodebug=all<br> klipsdebug=all<br> nat_traversal=yes<br> virtual_private=<br> oe=off<br> # Enable this if you see failed to find any available worker<br> nhelpers=0<br> plutorestartoncrash=yes<br> # NSS DB Storage<br> ipsecdir=/usr/local/platform/.security/ipsec<br> nssdir =/usr/local/platform/.security/ipsec<br> # Pluto core file if it cores...<br> dumpdir=/var/log/active/core<br> # For redirecting pluto logs, use plutostderrlog=directory of our choice<br> plutostderrlog = /var/log/active/syslog/secure<br><br>conn block<br><br> auto=ignore<br><br>conn private<br> auto=ignore<br><br>conn private-or-clear<br><br> auto=ignore<br><br>conn clear-or-private<br><br> auto=ignore<br><br>conn clear<br><br> auto=ignore<br><br>conn packetdefault<br><br> auto=ignore<br><br># Place all our user configurations (.conf) files below<br>#include /etc/ipsec.d/conf/*.conf<br>include /etc/ipsec.d/conf/
1207277490 .conf<br><br>Do you see any obsolete parameters in this conf file . can you comment the same .<br><br>thanks ,<div>Madhan</div></div>