[Openswan dev] Openswan on uClinux
David McCullough
David_Mccullough at securecomputing.com
Sun Dec 16 09:02:45 EST 2007
Jivin D. Hugh Redelmeier lays it down ...
> | From: David McCullough <David_Mccullough at securecomputing.com>
>
> | Also, openswan (AFAIK) has never been run on uClinux. The Freeswan
> | version in the uClinux-dist has been used under uClinux.
>
> The Linksys WRV200 wireless VPN router seems to run uCLinux and
> Openswan. Linksys makes available the GPLed code that they used.
> (Well, not the code for beta versions, but that is another story.)
> The router's processor core has an MMU so they could have used
> mainstream Linux.
Yeah, I didn't think to hard about that did I.
Obviously our routers also run uCLinux from the uClinux-dist, but all
the current models have an MMU (uClinux is just linux really).
The uClinux-dist includes the current 2.4 openswan version as well as
a freeswan variant. All easy to get going.
I was talking more !MMU + openswan.
There is no reason it can't be done. Just the tools needed to get all the
scripts going may not all be fully functional on a !MMU system, or it
may need a little work. If you go barebones and just use pluto and
whack it gets a lot easier (depending on your point of view ;-) on !MMU.
> As far as I know they have never submitted any of their changes back
> to the Openswan project. Nor have I heard of anyone building and
> running from the released source. Too bad: the hardware looks better
> than the WRT54GL.
>
> The WRV200 seems to have dubious reliability according to discussion
> on linksysinfo.org so their port may not be great but it could be a
> start.
Cheers,
Davidm
--
David McCullough, david_mccullough at securecomputing.com, Ph:+61 734352815
Secure Computing - SnapGear http://www.uCdot.org http://www.cyberguard.com
More information about the Dev
mailing list