|
||||||||
Hi, i have wrote the same thing under the subject "X509 Tunnel m0n0wall to openswan" and the thread result into a wish of me for m0n0wall. I use x509 Certificates for dynamic IP Adresses. With PSK all road warrior must have the same Key, so Certificates are necessary for more security. I think the m0n0wall needs the identifer "asn1dn" or similar that the identification will work correctly in combination with openswan certificate authentication. This identifer must fill automatically with the Subject of the certificate or the user of the m0n0wall will have the chance to declare the Subject DN of the certificate in a text field. Is this possible or will this feature violate a RFC ?? regards, Peter Naber ------------------------------- Peter Naber alfa-it Services GmbH Steinheimer Str. 117 D-63500 Seligenstadt Phone +49-6182-804-390 Fax +49-6182-804.112 ------------------------------- |