I have two questions.
First question
I readed this article about heartbleed bug.
Heartbleed: Recommended steps for UTM
In my company we are using IPsec site-to-site vpn between my company and german company.
If I generate new CA as is description in article I am worry about what this heppaned with IPsec site-to-site. The article says the Ipsec is not affected, If I understand and I do not make manually apply in ipsec/advanced/Local X509 Certificate/apply it not will be regenerated.
So connection can't be broken. If I do it a presume this will be shutdown our site-to-site vpn and I must configure again on both side.
Second question
Can I make gaps in the regeneration CA string.
ca_generate_signing_ca({name=>'webadmin ca', key_size=>2048, country=>'CountryAcronym', state=>'StateName', city=>'CityName', organization=>'OrganizationName', common_name=>'UTMhostname', email=>'mailaddress@maildomain.com'})For example like this:
ca_generate_signing_ca({name=>'webadmin ca', key_size=>2048, country=>'CZ', state=>'Vychodni Cechy', city=>'Praha', organization=>'My Company s.r.o.', common_name=>'mail.mycompany.cz', email=>'mailaddress@maildomain.com'})Many thanks for help and explanations.
This thread was automatically locked due to age.
