[ previous ] [ next ] [ threads ]
 From:  Chet Harvey <chet at pittech dot com>
 To:  Justin Ellison <justin at techadvise dot com>
 Cc:  m0n0wall dash dev at lists dot m0n0 dot ch
 Subject:  Re: [m0n0wall-dev] Testers needed: IPSec Certs
 Date:  Mon, 14 Jun 2004 02:24:06 -0400
you want two-way trust or client trust to server, much like a website? Either 
way for the certs use OpenSSL on your box and to get a CA just self sign it 
and also place the signed cert.

openssl req -new -x509 -days 365 -nodes -config openssl.cnf -out ipsec.pem -
keyout ipsec.pem

follow the prompts to make your private key....

Quoting Justin Ellison <justin at techadvise dot com>:

> I have a working (for me) implementation of IPSec certs on m0n0wall. 
> Any devs (with knowledge on how to create certs & CA's - m0n0 can't yet)
> have a desire to see if it works?
> Justin
> -- 
> Justin Ellison <justin at techadvise dot com>

Chet Harvey
Pitbull Technologies <http://www.pittech.com/> 
Protecting your Digital Assets