[Openswan Users] Klips patch
sasa
sasa at shoponweb.it
Tue Oct 11 18:24:43 CEST 2005
"Paul Wouters" wrote:
> Please dowload openswan-2.4.0-1.src.rpm from the openswan ftp/www site. Then
> do the following:
>
> rpm -hiv openswan-2.4.0-1.src.rpm
> cd /usr/src/redhat/SOURCES
> tar zxvf openswan-2.4.0.tar.gz
> cd openswan-2.4.0/packaging/redhat/
[cut]
>
> That should give you a new openswan-klips package you can install that
> should have support for nat-t. It will also give you a new openswan package
> that matches the openswan-klips package. Install both using "rpm -Uhv"
..I have made all operation and all it's ok, but the ipsec0 interfaces isn't create (the same error then I have indicated in thread with subject 'interface ipsec0 not created') and I have:
[root at localhost ~]# ipsec verify
Checking your system to see if IPsec got installed and started correctly:
Version check and ipsec on-path [OK]
Linux Openswan U2.4.0/K2.6.12-1.1378_FC3 (netkey)
Checking for IPsec support in kernel [OK]
Checking for RSA private key (/etc/ipsec.secrets) [OK]
Checking that pluto is running [OK]
Two or more interfaces found, checking IP forwarding [FAILED]
Checking for 'ip' command [OK]
Checking for 'iptables' command [OK]
Checking for 'setkey' command for NETKEY IPsec stack support [FAILED]
which: no setkey in (/sbin:/usr/bin:/usr/local/sbin:/usr/sbin:/usr/sbin:/sbin:/usr/sbin:/usr/local/bin:/bin:/usr/bin)
Opportunistic Encryption Support [DISABLED]
which: no setkey in (/sbin:/usr/bin:/usr/local/sbin:/usr/sbin:/usr/sbin:/sbin:/usr/sbin:/usr/local/bin:/bin:/usr/bin)
..still thanks !!
Salvatore.
More information about the Users
mailing list