[Openswan dev] Openswan and NETKEY
Paul Wouters
paul at xelerance.com
Thu Mar 20 09:23:45 EDT 2008
On Thu, 20 Mar 2008, Leena Soman wrote:
> So after we build and install openswan, it gets loaded as a kernel module,
> right? If we have to statically compile it in, we would have to rebuild the
> kernel. Is my understanding correct?
NETKEY comes with your kernel
KLIPS is a seperate kernel compile
Under openswan 2.4.x, we first check which stack is loaded (and abort if we
find both), and if none is loaded, we try to load KLIPS.
Under openswan 2.5.x, we check the config option protostack= to see which
stack is desired, and try to load it (and abort if we find both). If unset,
it behaves as 2.4.x.
Paul
More information about the Dev
mailing list