Revision 7b1e6c3a
Added by Matthew Smith almost 10 years ago
| src/etc/inc/vpn.inc | ||
|---|---|---|
| 1002 | 1002 |
} |
| 1003 | 1003 |
break; |
| 1004 | 1004 |
case 'hybrid_rsa_server': |
| 1005 |
$authentication = "leftauth = xauth-generic\n\trightauth = pubkey"; |
|
| 1006 |
$authentication .= "\n\trightauth2 = xauth"; |
|
| 1005 |
$authentication = "leftauth = pubkey\n\trightauth = xauth-generic"; |
|
| 1007 | 1006 |
if (!empty($ph1ent['certref'])) {
|
| 1008 | 1007 |
$authentication .= "\n\tleftcert={$certpath}/cert-{$ph1ent['ikeid']}.crt";
|
| 1009 | 1008 |
} |
Also available in: Unified diff
https://redmine.pfsense.org/issues/5207
change auth methods for both peers when using hybrid RSA + xauth with IKEv1