PRE-TEST moon# ipsec start Starting strongSwan 4.3.6 IPsec [starter]... carol# ipsec start Starting strongSwan 4.3.6 IPsec [starter]... carol# sleep 2 carol# ipsec up home 002 "home" #1: initiating Main Mode 104 "home" #1: STATE_MAIN_I1: initiate 003 "home" #1: ignoring Vendor ID payload [strongSwan] 003 "home" #1: received Vendor ID payload [XAUTH] 003 "home" #1: received Vendor ID payload [Dead Peer Detection] 106 "home" #1: STATE_MAIN_I2: sent MI2, expecting MR2 002 "home" #1: we have a cert and are sending it upon request 003 "home" #1: unable to locate my private key for signature 224 "home" #1: STATE_MAIN_I2: AUTHENTICATION_FAILED 002 "home" #1: sending encrypted notification AUTHENTICATION_FAILED to 192.168.0.1:500 002 "home" #1: we have a cert and are sending it upon request 003 "home" #1: unable to locate my private key for signature 224 "home" #1: STATE_MAIN_I2: AUTHENTICATION_FAILED 002 "home" #1: sending encrypted notification AUTHENTICATION_FAILED to 192.168.0.1:500 010 "home" #1: STATE_MAIN_I2: retransmission; will wait 20s for response 002 "home" #1: we have a cert and are sending it upon request 003 "home" #1: unable to locate my private key for signature 224 "home" #1: STATE_MAIN_I2: AUTHENTICATION_FAILED 002 "home" #1: sending encrypted notification AUTHENTICATION_FAILED to 192.168.0.1:500 010 "home" #1: STATE_MAIN_I2: retransmission; will wait 40s for response 031 "home" #1: max number of retransmissions (2) reached STATE_MAIN_I2 TEST carol# cat /var/log/auth.log | grep 'unable to locate my private key' [YES] Feb 27 23:34:00 carol pluto[16493]: "home" #1: unable to locate my private key for signature Feb 27 23:34:09 carol pluto[16493]: "home" #1: unable to locate my private key for signature Feb 27 23:34:30 carol pluto[16493]: "home" #1: unable to locate my private key for signature moon# ipsec status | grep 'rw.*STATE_MAIN_R3.*ISAKMP SA established' [NO] carol# ipsec status | grep 'home.*STATE_MAIN_I4.*ISAKMP SA established' [NO] POST-TEST moon# ipsec stop Stopping strongSwan IPsec... carol# ipsec stop Stopping strongSwan IPsec...