diff options
| author | Matt Smith <mgsmith@netgate.com> | 2015-10-07 15:30:51 -0500 |
|---|---|---|
| committer | Matt Smith <mgsmith@netgate.com> | 2015-10-07 15:30:51 -0500 |
| commit | 7b1e6c3a3470623a954e92d8c98ffffc77b4397c (patch) | |
| tree | 33fc196f3836d167ba232d4b9ad73c504078d269 /src/etc | |
| parent | 446db7358b548acb3662a3b5abd642786971dd90 (diff) | |
| download | pfsense-7b1e6c3a3470623a954e92d8c98ffffc77b4397c.zip pfsense-7b1e6c3a3470623a954e92d8c98ffffc77b4397c.tar.gz | |
https://redmine.pfsense.org/issues/5207
change auth methods for both peers when using hybrid RSA + xauth with IKEv1
Diffstat (limited to 'src/etc')
| -rw-r--r-- | src/etc/inc/vpn.inc | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/src/etc/inc/vpn.inc b/src/etc/inc/vpn.inc index b999ea0..e277da5 100644 --- a/src/etc/inc/vpn.inc +++ b/src/etc/inc/vpn.inc @@ -1002,8 +1002,7 @@ EOD; } break; case 'hybrid_rsa_server': - $authentication = "leftauth = xauth-generic\n\trightauth = pubkey"; - $authentication .= "\n\trightauth2 = xauth"; + $authentication = "leftauth = pubkey\n\trightauth = xauth-generic"; if (!empty($ph1ent['certref'])) { $authentication .= "\n\tleftcert={$certpath}/cert-{$ph1ent['ikeid']}.crt"; } |
