From: Konstantin Shemyak <konstantin@sh...> - 2007-11-13 19:55:17
I'm planning to use racoon as "vpn client" (and server too,
but this question is only about the client side). In my
network, the devices (not their users) authenticate to the server.
Devices have own X.509 certificates and use them for authentication.
The problem is, the client does not send ISAKMP mode config
request when it has "authentication_method rsasig" for phase 1
negotiation (and without any racoonctl). I would expect the
client to request mode config parameters immediately after an
ISAKMP SA is created, as it has all needed authentication credentials.
Am I missing something, or is such behavior not implemented?
Client racoon works as described in manuals when I use
"authentication_mode hybrid_rsa_client" for phase 1 and
issue "racoonctl vc" command.
Thanks in advance,
Get latest updates about Open Source Projects, Conferences and News.