[Openswan Users] install openswan with 2.6 vanilla

Davide Giunchi davidegiunchi at libero.it
Mon Nov 29 12:35:10 CET 2004


I'm trying to install openswan on a debian sarge with 2.6.9 but i can't
find any valuable documentation about how to compile the kernel.

As openswan has been removed from sarge (i don't know why) i've compiled
openswan-2.2.0 with
make programs
make install

then when i try to run /etc/init.d/ipsec start i get:

ipsec_setup: Starting Openswan IPsec 2.2.0...
ipsec_setup: insmod: can't read 'ipsec': No such file or directory
ipsec_setup: FATAL: Module af_key not found.
ipsec_setup: calcgoo: warning: 2.6 kernel with kallsyms not supported
yet
ipsec_setup: FATAL: Module ipsec not found.
ipsec_setup: kernel appears to lack KLIPS

On my 2.6 configuration i've enabled all under "Cryptographic options"
and:
IP: AH transformation
IP: ESP transformation
IPsec user configuration interface

but even with this i can't get the ipsec start so i can't go on with
configuration:

# ipsec verify
Checking your system to see if IPsec got installed and started
correctly:
Version check and ipsec on-path
[OK]
Linux Openswan U2.2.0/K(no kernel code presently loaded)
Checking for IPsec support in kernel
[FAILED]
Checking for RSA private key (/etc/ipsec.secrets)
[FAILED]
ipsec showhostkey: file `/etc/ipsec.secrets' does not exist
Checking that pluto is running
[FAILED]
whack: Pluto is not running (no "/var/run/pluto.ctl")
Two or more interfaces found, checking IP forwarding
[FAILED]
whack: Pluto is not running (no "/var/run/pluto.ctl")
Checking for 'ip' command
[OK]
Checking for 'iptables' command
[OK]

Opportunistic Encryption DNS checks:
   Looking for TXT in forward dns zone: hal
[MISSING]
hal.lan does not exist (Authoritative answer)
   Does the machine have at least one non-private address?
[FAILED]


I want to use a vanilla 2.6, not the debian one, so which options i need
to enable to get openswan working?

Regards.





More information about the Users mailing list