<html><head><style type="text/css"><!-- DIV {margin:0px;} --></style></head><body><div style="font-family:times new roman,new york,times,serif;font-size:10pt"><div>yes, i am sure about it, i tried two times got same result.<br>that's why i feel so strange.<br></div><div style="font-family: times new roman,new york,times,serif; font-size: 10pt;"><br><div style="font-family: arial,helvetica,sans-serif; font-size: 13px;"><font face="Tahoma" size="2"><hr size="1"><b><span style="font-weight: bold;">From:</span></b> Paul Wouters <paul@xelerance.com><br><b><span style="font-weight: bold;">To:</span></b> yu chen <kith_yuchen@yahoo.com><br><b><span style="font-weight: bold;">Cc:</span></b> users@openswan.org<br><b><span style="font-weight: bold;">Sent:</span></b> Tue, December 22, 2009 6:19:26 PM<br><b><span style="font-weight: bold;">Subject:</span></b> Re: [Openswan Users] openswan installation problem<br></font><br>
On Tue, 22 Dec 2009, yu chen wrote:<br><br>> if with same system and install openswan-2.4.12, see below for ipsec verify:<br>> <br>> Checking your system to see if IPsec got installed and started correctly:<br>> Version check and ipsec on-path [OK]<br>> Linux Openswan U2.4.12/K2.6.18-164.6.1.el5 (netkey)<br>> Checking for IPsec support in kernel [OK]<br>> NETKEY detected, testing for disabled ICMP send_redirects [OK]<br>> NETKEY detected, testing for disabled ICMP accept_redirects [OK]<br>> Checking for RSA private key
(/etc/ipsec.secrets) [OK]<br>> Checking that pluto is running [OK]<br>> Two or more interfaces found, checking IP forwarding [OK]<br>> Checking NAT and MASQUERADEing [N/A]<br>> Checking for 'ip'
command [OK]<br>> Checking for 'iptables' command [OK]<br>> Opportunistic Encryption Support [DISABLED]<br>> <br>> why openswan-2.6.23 show up :<br>> Pluto listening for IKE on udp
500 [FAILED]<br>> Pluto listening for NAT-T on udp 4500 [FAILED]<br>> Two or more interfaces found, checking IP forwarding [FAILED]<br><br>That's odd. Are you sure you were running openswan on both checks?<br>If openswan was not running it would explain things, also because<br>openswan might set the forwarding sysctl setting.<br><br>Paul<br></div></div>
<!-- cg5.c2.mail.re1.yahoo.com compressed/chunked Mon Dec 21 02:38:28 PST 2009 -->
</div><br>
</body></html>