[Openswan dev] FreeSwan/uClinux using pluto and whack: ipsec0 not found
aparna.dutta
aparna.dutta at jasmin-infotech.com
Thu Jan 24 08:21:11 EST 2008
I am trying to get the uClinux ported Freeswan to work on Analog Devices
BF561.
Since the wrapper ipsec scripts are not available on uClinux FreeSwan, I am
trying to use pluto and whack commands directly as follows:
$ pluto -interface ipsec0 &
$ whack -debug-all
$ whack -name westeast -id aa.bb.cc.dd -host aa.bb.cc.dd -to -id pp.q.rr.ss
-host -pp.qq.rr.ss -rsasig -tunnel -esp AES-MD5-2048
$ whack -keyid pp.qq.rr.ss <PUBLICRSAKEYOFTHEOTHERHOST>
$ whack -listen
The first 4 commands are successful, but the last listen command gives:
$ No public interfaces found
Since this is freeswan, it must be using the KLIPS stack which requires the
ipsecN interface. So I try
$ tncfg -attach -virtual ipsec0 -physical eth0
This gives $ tncfg: Socket ioctl failed on attach. -No such device. Is the
virtual device valid? Is the ipsec module linked into the kernel or loaded
as module?
The logs in /var/log/messages show:
Found eth0 with address aa.bb.cc.dd
IP interface eth0 with address aa.bb.cc.dd has no matching ipsec* interface
-ignored
Found lo with address 0000:0000:.0001
IP interface lo with address 000.0001 has no matching ipsec* interface
-ignored
This means that it is looking for an installed ipsec0 interface. How do I go
about registering/installing a virtual network interface ipsec0?
Thanks and regards,
Aparna
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.openswan.org/pipermail/dev/attachments/20080124/3510800a/attachment.html
More information about the Dev
mailing list