[Openswan Users] openswan and red hat enterprise

[Ken Bantoft]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



RedHat has applied many patches to thier kernel that break numerous 
applications.

IIRC, Enterprise 3 kernels have the 2.6 IPsec stack backported to 2.4

So all you need to do it "make programs && make install" from the 
openswan-2.1.1 source directory.

However, you won't have NAT-T traversal.  You could try the natt.patch 
files from www.openswan.org/code and just patch in 

http://www.openswan.org/code/openswan-2.1.1.natt.patch.gz

However no promises, as RedHat may have conflicting patches already in the 
kernel.

The default .spec file build kernels for 2.4 boxes, so that's why it 
breaks. Try using /packaging/redhat/openswan.26spec instead.



On Wed, 24 Mar 2004, Morgan Marodin wrote:

> Hi.
> 
> How does work openswan with the kernel of Red Hat Enterprise ES 3 (v 
> 2.4.21-9.0.1.EL)?
> Do I have to patch the kernel for NatTraversal feature?
> 
> I have searched for this issue everywhere in the web ... but I have found 
> nothing!
> 
> 
> Then ... I tested to rpmbuild (as a normal user, NOT root) the package with 
> the tarball openswan-2.1.1.tar.gz (renaming it to freeswan-2.0x-cvs.tar.gz 
> as in the spec file) but compiling it reports an error:
> ---------------------------------------------------
> ...
> ...
> ...
> ---------------------------------------------------
> 
> I have tested the same operation with the tarball freeswan-2.05.tar.gz 
> (from www.freeswan.org) and ... reports the same error!
> 
> Could you help me?
> 
> Thanks!
> Morgan 

- -- 
Ken Bantoft			VP Business Development
ken at xelerance.com		Xelerance Corporation
sip://toronto.xelerance.com	http://www.xelerance.com

The future is here. It's just not evenly distributed yet. 
        -- William Gibson

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.1 (GNU/Linux)

iD8DBQFAYb1OPiOgilmwgkgRAjrEAJ9vpgg9nHPJzQXeJKiubzCtGWlVYgCglI26
e0lURvPBcbuCIkdtFEH81fI=
=DorC
-----END PGP SIGNATURE-----