Dear all. i need to establish an IPsec tunnel between two networks. both gateways use FW2. i did everything like it is described in http://www.nadmm.com/show.php?story=articles/vpn.inc (in respect to my case, of cource) but i get the following errors: Mar 21 19:53:09 cmp240b Pluto[13782]: "sample" #1: responding to Main Mode Mar 21 19:53:09 cmp240b Pluto[13782]: "sample" #1: Peer ID is ID_FQDN: '@cmpd2.phys.msu.su' Mar 21 19:53:09 cmp240b Pluto[13782]: "sample" #1: no RSA public key known for '@cmpd2.phys.msu.su' below is sample of one of mine ipsec.conf. (updown script borrowed from a link in the above article) # basic configuration config setup interfaces=%defaultroute klipsdebug=none plutodebug=none plutoload=%search plutostart=%search uniqueids=yes # defaults for subsequent connection descriptions conn %default type=tunnel keyingtries=1 keyexchange=ike ikelifetime=240m keylife=20m leftrsasigkey=%cert left=%defaultroute leftupdown=/etc/ipsec.updown leftid=@left.gateway.fqdn.name rightrsasigkey=%cert pfs=yes compress=yes auth=esp authby=rsasig # sample connection conn sample right=x.y.z.149 rightsubnet=10.0.0.0/24 rightid=@right.gateway.fqdn.name # Right security gateway and subnet behind it. auto=start