> I haven't tried this, and it's not in the manual as far as I can > see, but it looks like isakmpd looks in files named after the > identity of the local peer (i.e. srcid) before it tries local.key. > If you get it working, let me know the details and I'll try and > come up with something for the manual...
forgot to mention, same thing goes for ca.crt
native-fsread: filename eq "/etc/isakmpd/ca/level1.blah.org" then permit
Thanks.
