ipsec.d » History » Version 5
Tobias Brunner, 04.09.2024 15:47
| 1 | 5 | Tobias Brunner | {{swanctl}} |
|---|---|---|---|
| 2 | 5 | Tobias Brunner | |
| 3 | 3 | Martin Willi | h1. ipsec.d |
| 4 | 3 | Martin Willi | |
| 5 | 3 | Martin Willi | strongSwan's _/etc/ipsec.d/_ directory contains various certificate and CRL files that are loaded by |
| 6 | 4 | Tobias Brunner | the keying daemons pluto and charon. The following subdirectories are currently defined: |
| 7 | 1 | Martin Willi | |
| 8 | 4 | Tobias Brunner | * [[IpsecDirectoryPrivate|private]] contains RSA and ECDSA private key files |
| 9 | 3 | Martin Willi | * [[IpsecDirectoryCerts|certs]] contains X.509 or PGP end entity certificates |
| 10 | 3 | Martin Willi | * [[IpsecDirectoryCrls|crls]] contains certificate revocation lists |
| 11 | 1 | Martin Willi | * [[IpsecDirectoryCacerts|cacerts]] contains trustworthy CA certificates |
| 12 | 3 | Martin Willi | * [[IpsecDirectoryOcspcerts|ocspcerts]] contains trustworthy OCSP signer certificates |
| 13 | 3 | Martin Willi | * [[IpsecDirectoryAacerts|aacerts]] contains trustworthy authorization authority certificates |
| 14 | 3 | Martin Willi | * [[IpsecDirectoryAcerts|acerts]] contains attribute certificates |
| 15 | 4 | Tobias Brunner | * [[IpsecDirectoryReqs|reqs]] contains PKCS#10 certificate requests |