[Openswan dev] Openswan on uClinux

David McCullough David_Mccullough at securecomputing.com
Sun Dec 16 09:02:45 EST 2007

Jivin D. Hugh Redelmeier lays it down ...
> | From: David McCullough <David_Mccullough at securecomputing.com>
> | Also,  openswan (AFAIK) has never been run on uClinux.  The Freeswan
> | version in the uClinux-dist has been used under uClinux.
> The Linksys WRV200 wireless VPN router seems to run uCLinux and
> Openswan.  Linksys makes available the GPLed code that they used.
> (Well, not the code for beta versions, but that is another story.)
> The router's processor core has an MMU so they could have used
> mainstream Linux.

Yeah,  I didn't think to hard about that did I.

Obviously our routers also run uCLinux from the uClinux-dist,  but all
the current models have an MMU (uClinux is just linux really).
The uClinux-dist includes the current 2.4 openswan version as well as
a freeswan variant.  All easy to get going.

I was talking more !MMU + openswan.

There is no reason it can't be done. Just the tools needed to get all the
scripts going may not all be fully functional on a !MMU system, or it
may need a little work.  If you go barebones and just use pluto and
whack it gets a lot easier (depending on your point of view ;-) on !MMU.

> As far as I know they have never submitted any of their changes back
> to the Openswan project.  Nor have I heard of anyone building and
> running from the released source.  Too bad: the hardware looks better
> than the WRT54GL.
> The WRV200 seems to have dubious reliability according to discussion
> on linksysinfo.org so their port may not be great but it could be a
> start.


David McCullough,  david_mccullough at securecomputing.com,   Ph:+61 734352815
Secure Computing - SnapGear  http://www.uCdot.org http://www.cyberguard.com

More information about the Dev mailing list