> [email protected] wrote: >> Hello >> >> i am testing IKEv2; and because i felt really confuse trying to >> configure >> them; i delete all certs; and i can not find how to re-create them, on >> FAQ >> and misc! >> >> May somebody help please? >> >> Thank you. > > It's in /etc/rc , function make_keys at line 135: > > # Generate keys for isakmpd, iked and sshd if they don't exist yet. > make_keys() { > # ... > local _iked_key=/etc/iked/private/local.key > local _iked_pub=/etc/iked/local.pub > > # ... > > if [[ ! -f $_iked_key ]]; then > echo -n "openssl: generating iked ECDSA keys... " > if openssl ecparam -genkey -name prime256v1 -out $_iked_key > >/dev/null > 2>&1 && > chmod 600 $_iked_key && > openssl ec -out $_iked_pub -in $_iked_key \ > -pubout >/dev/null 2>&1; then > echo done. > else > echo failed. > fi > fi > > # ... > } > > -Lucas >
Hey Lucas thank you very much man! Something magic had happend after reboot! lkev2 is working, BTW at the client i can not use Web Browser?, the ssh connection did not stop working. Really thanks man.
