[Openswan Users] Problem in debug

Paul Wouters paul at xelerance.com
Fri Mar 11 22:20:25 CET 2005

On Wed, 9 Mar 2005, Anderson Alves de Albuquerque wrote:

> when I have problem with "ipsec verify", what Do I need to do?
> # ipsec verify
> Checking your system to see if IPsec got installed and started correctly:
> Version check and ipsec on-path
> [OK]
> Linux Openswan U2.3.1dr3/K(no kernel code presently loaded)
> Checking for IPsec support in kernel
> Checking for RSA private key (/etc/ipsec.secrets)
> [OK]
> Checking that pluto is running
> whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")
> Checking for 'ip' command
> Checking for 'iptables' command
> [OK]

Openswan isn't started or failed to start. If the latter, check your
logfiles for the reason.

If using NETKEY from linux 2.6, install iproute2

> Opportunistic Encryption DNS checks:
>   Looking for TXT in forward dns zone: vpn
>   Does the machine have at least one non-private address?
> [OK]
>   Looking for TXT in reverse dns zone:

Ignore these.


"At best it is a theory, at worst a fantasy" -- Michael Crichton

More information about the Users mailing list