<DIV>Hi,</DIV>
<DIV> </DIV>
<DIV>I am new to this list and also do not have much experience with compiling linux kernels, so my apologies if this has already been answered ( I've checked through the list archives for a solution, but couldn't find anything).</DIV>
<DIV> </DIV>
<DIV>I am trying to apply the NAT-T patch to the RedHat9 distribution kernel (2.4.20-8) without success. The kernel compiles and boots fine, but I get the following error message reported when pluto control debug is applied:</DIV>
<DIV> </DIV>ipsec__plutorun: 003 NAT-Traversal: ESPINUDP(1) not supported by kernel -- NAT-T disabled
<DIV> </DIV>
<DIV>I have included below, the exact command sequence that I have been performing. Any ideas would be most welcome.</DIV>
<DIV> </DIV>
<DIV>thanks</DIV>
<DIV> </DIV>
<DIV>Russ</DIV>
<DIV> </DIV>
<DIV><BR># Install kernel source RPM from RedHat9 distribution CD.<BR>rpm -i /mnt/cdrom/RedHat/RPMS/kernel-source-24.20-8</DIV>
<DIV> </DIV>
<DIV>cd /usr/src</DIV>
<DIV> </DIV>
<DIV>ln -s ./linux-2.4.20-8 ./linux</DIV>
<DIV> </DIV>
<DIV>cd linux</DIV>
<DIV> </DIV>
<DIV>make mrproper</DIV>
<DIV> </DIV>
<DIV>cp configs/kernel-2.4.20-i686.config ./.config</DIV>
<DIV> </DIV>
<DIV>make xconfig # Just Save and Exit</DIV>
<DIV> </DIV>
<DIV>make dep<BR>......</DIV>
<DIV> </DIV>
<DIV>make clean<BR>......</DIV>
<DIV> </DIV>
<DIV>cd /home/openswan-2.1.2rc3</DIV>
<DIV> </DIV>
<DIV># Apply OpenS/WAN NAT-T patch and compile new bzImage.<BR>make nattpatch | ( cd /usr/src/linux && patch -p1 && make bzImage )</DIV>
<DIV> </DIV>
<DIV>patching file include/net/sock.h<BR>Hunk #1 succeeded at 252 (offset 7 lines).<BR>Hunk #2 succeeded at 593 (offset 3 lines).<BR>patching file net/Config.in<BR>Hunk #1 succeeded at 101 (offset 13 lines).<BR>patching file net/ipv4/udp.c<BR>Hunk #1 succeeded at 798 (offset 11 lines).<BR>Hunk #3 succeeded at 1075 (offset 11 lines).<BR>gcc -Wall -Wstrict-prototypes -O2 -fomit-frame-pointer -o scripts/split-include scripts/split-include.c<BR>scripts/split-include include/linux/autoconf.h include/config<BR>......</DIV>
<DIV><BR>cd /usr/src/linux</DIV>
<DIV> </DIV>
<DIV>make modules<BR>......</DIV>
<DIV> </DIV>
<DIV>make modules_install<BR>......</DIV>
<DIV> </DIV>
<DIV>cd /home/openswan-2.1.2rc3</DIV>
<DIV> </DIV>
<DIV>make KERNELSRC=/usr/src/linux programs module<BR>......</DIV>
<DIV> </DIV>
<DIV>make KERNELSRC=/usr/src/linux install minstall<BR>......</DIV>
<DIV> </DIV>
<DIV>cd /usr/src/linux</DIV>
<DIV> </DIV>
<DIV>make install<BR>......</DIV>
<DIV> </DIV>
<DIV># REBOOT NEW KERNEL</DIV>
<DIV> </DIV>
<DIV>service ipsec restart</DIV>
<DIV> </DIV>
<DIV>ipsec_setup: Stopping Openswan IPsec...<BR>ipsec_setup: Starting Openswan IPsec 2.1.2rc3...<BR>ipsec_setup: Using /lib/modules/2.4.20-8-test/kernel/ipsec.o</DIV>
<DIV> </DIV>
<DIV>tail /var/log/messages</DIV>
<DIV># NAT-T error as displayed in /var/log/messages.<BR>May 11 11:38:08 testarossa ipsec_setup: ...Openswan IPsec started<BR>May 11 11:38:08 testarossa ipsec__plutorun: 003 NAT-Traversal: ESPINUDP(1) not supported by kernel -- NAT-T disabled</DIV>
<DIV> </DIV>
<DIV> </DIV>
<DIV> </DIV>