diff options
author | Matt Smith <mgsmith@netgate.com> | 2015-10-07 15:28:08 -0500 |
---|---|---|
committer | Matt Smith <mgsmith@netgate.com> | 2015-10-07 15:28:08 -0500 |
commit | db322752ebb5fecc54bd9ce841874b47624c89c6 (patch) | |
tree | a791a849f5104dbe4cd485f36ed328a49741a4ea | |
parent | 5bf321b6dd7a00124927fe3894e07b35b1f27640 (diff) | |
download | pfsense-db322752ebb5fecc54bd9ce841874b47624c89c6.zip pfsense-db322752ebb5fecc54bd9ce841874b47624c89c6.tar.gz |
https://redmine.pfsense.org/issues/5207
change auth methods for both peers when using hybrid RSA + xauth with IKEv1
-rw-r--r-- | etc/inc/vpn.inc | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/etc/inc/vpn.inc b/etc/inc/vpn.inc index 3f329fc..99d7e60 100644 --- a/etc/inc/vpn.inc +++ b/etc/inc/vpn.inc @@ -1009,8 +1009,7 @@ EOD; } break; case 'hybrid_rsa_server': - $authentication = "leftauth = xauth-generic\n\trightauth = pubkey"; - $authentication .= "\n\trightauth2 = xauth"; + $authentication = "leftauth = pubkey\n\trightauth = xauth-generic"; if (!empty($ph1ent['certref'])) { $authentication .= "\n\tleftcert={$certpath}/cert-{$ph1ent['ikeid']}.crt"; } |