[Openswan Users] linksys WRT54G openswan

Ferdinand O. Tempel pw at linuxops.net
Sat May 22 13:37:03 CEST 2004 

Hey Paul,

First, thanks for the effort in porting openswan over to the WRT54G.
Having a $100 wireless ipsec endpoint is very appealing.

Anyway I posted some stuff already to the openwrt forum
(http://openwrt.ksilebo.net/forum/viewtopic.php?p=465#465), but then I
spotted that you prefer to have feedback by email. Hey, I'm flexible.

I took your packages for a quick testdrive, and have the following
observations:
* The openswan package doesn't install cleanly. It produces the
following error:
Unpacking openswan...Done. 
Configuring openswan...Disabling logger, since it will hang system. see
/usr/bin/loggerfix 
You will now need to generate an IPsec hostkey or X.509 certificate
before  
//usr/lib/ipkg/info/openswan.postinst: 11: Syntax error: Unterminated
quoted string 
Done.

This looks like a typo in the aforementioned postinst script. 
* mawk doesn't replace busybox's awk, so it keeps complaining about:
"awk: cmd. line:256: Unexpected token" with everything you do. I
replaced the awk symlink to busybox with a symlink to /usr/bin/mawk
which is provided by your mawk package.
* You seem to have build your packages with --prefix=/usr/local
(standard, iirc) while you install everything straight under /usr. This
breaks both /usr/sbin/ipsec as /etc/init.d/S60ipsec, which can't find
the stuff they're looking for. I modified the scripts.
* /usr/libexec/ipsec/setup points to a non existant
/etc/rc.d/init.d/ipsec, it should point to /etc/init.d/S60ipsec
* Cosmetic: ipsec.o gets placed in a deep directory structure (the
default /lib/modules/`uname -r`/kernel/net/ipsec/), while openwrt keeps
it pretty flat (all modules in /lib/modules/`uname -r`/). I'd place
ipsec.o there too.
* ipsec setup {start,stop} don't seem to do anything at all, I'm at this
point in getting things working now. I'll keep you posted both in the
forum mentioned above and through email reports when there's something
to report :-)

HTH
-- 
Regards,

Ferdinand O. Tempel

Your friendly neighborhood linuxops.net administrator.

More information about the Users mailing list