cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
51
Views
0
Helpful
0
Replies
Beginner

RSA auth and self-generated keypair

Hi all,

 

can anyone confirm that IKEv1 with rsa-sign authentication method only works with self-generated private key?

I'm trying to establish GRE over IPsec and the IKE exchange stops at MM4 because the initiator reports it cannot sign the MM5.

FYI I'm trying to implement what explained at http://packetlife.net/blog/2009/jan/14/isakmp-associations-using-rsa-keys/ but between a Cisco router and a StrongSwan box. I imported the private and the associated public key and yet without the self generated keypair it doesn't pick up the imported private key.

 

Thanks, Alex