This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

X509 Net-to-Net

Hi all,

I was going to setup a net-to-net vpn solution with the x509 keys but can't get it working. Just wondering if anybody out there has got it working and how. I keep getting the error "Invalid or wrong passphrase?" when I upload the certs into the remote machine. I know that RSA or PSK is easier to setup but I am really just playing around and would like to get it working. Thanks for the help.

This thread was automatically locked due to age.

Parents

0 Simon Shaw over 22 years ago

Heh, I got the same problem.  Managed to correct it after much experimenting.

I think what I did (bit fuzzy now).

Create cert authority on each ASL box you want on the VPN.
Create certificate on each box.  I used Home_Cert Africa_Cert etc.
Export the certificate and install it on the ASL box on that will be the other side of the VPN.

In Local keys select the X509 certificate that is local to that box.  ie if you are working on Perth firewall put in the Perth_Cert as the local X509 key.

In the VPN configuration put in the name of the remote X509 cert that you previously imported.

Clear as mud ?
Should work ?
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 Simon Shaw over 22 years ago

Heh, I got the same problem.  Managed to correct it after much experimenting.

I think what I did (bit fuzzy now).

Create cert authority on each ASL box you want on the VPN.
Create certificate on each box.  I used Home_Cert Africa_Cert etc.
Export the certificate and install it on the ASL box on that will be the other side of the VPN.

In Local keys select the X509 certificate that is local to that box.  ie if you are working on Perth firewall put in the Perth_Cert as the local X509 key.

In the VPN configuration put in the name of the remote X509 cert that you previously imported.

Clear as mud ?
Should work ?
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data