I had setup successful a NET to NET VPN Communication with RSA Keys. Now I am trying this with X509 Certificats.
I created Computer 1 a Signing CA and created "Host CSRs and Certificates" Computer1 and Computer. Now I exported I the CA to Computer 2: it becomes here a Verification CA. I also imported the two keys to Computer No. 2. Than I selected each one as a local key on each machine, and setup the firewall rules and the Connections.
It does not working [:(]
Code:
Apr 29 21:54:06 (none) pluto[19151]: "BA__USA_1" #562: max number of retransmissions (2) reached STATE_MAIN_I3. Possible authentication failure: no acceptable response to our first encrypted message
Apr 29 21:54:06 (none) pluto[19151]: "BA__USA_1" #562: starting keying attempt 13 of an unlimited number
Apr 29 21:54:06 (none) pluto[19151]: "BA__USA_1" #565: initiating Main Mode to replace #562
Apr 29 21:54:09 (none) pluto[19151]: "BA__USA_1" #566: responding to Main Mode
Apr 29 21:54:10 (none) pluto[19151]: "BA__USA_1" #566: Peer ID is ID_IPV4_ADDR: '68.157.158.94'
Apr 29 21:54:10 (none) pluto[19151]: "BA__USA_1" #566: Issuer CRL not found
Apr 29 21:54:10 (none) pluto[19151]: "BA__USA_1" #566: Issuer CRL not found
Apr 29 21:54:10 (none) pluto[19151]: "BA__USA_1" #566: sent MR3, ISAKMP SA established
Apr 29 21:54:16 (none) pluto[19151]: "BA__USA_1" #565: discarding duplicate packet; already STATE_MAIN_I3
Apr 29 21:54:20 (none) pluto[19151]: "BA__USA_1" #566: retransmitting in response to duplicate packet; already STATE_MAIN_R3
Apr 29 21:54:36 (none) pluto[19151]: "BA__USA_1" #565: discarding duplicate packet; already STATE_MAIN_I3
Apr 29 21:54:40 (none) pluto[19151]: "BA__USA_1" #566: retransmitting in response to duplicate packet; already STATE_MAIN_R3
This thread was automatically locked due to age.
