[Openswan Users] Enabling Manually keyed IPSEC

Paul Wouters paul at xelerance.com
Fri Dec 8 10:13:51 EST 2006

On Fri, 8 Dec 2006, Gangadharan G - TLS,Chennai wrote:

> Operating System       : Fedora Core 4
> Linux Kernel version  : 2.6
> >From the output of command "service ipsec start" and "ipsec verify", It
> seems that we are using NETKEY only.
> Still, We are having the problem "no IPsec-enabled interfaces found".
> For more details about the entries that we have had added in the ipsec.conf,
> I am attaching my first mail.
> [root at localhost gganga]# service ipsec start
> ipsec_setup: Starting Openswan IPsec 2.4.4...
> ipsec_setup: insmod /lib/modules/2.6.11-1.1369_FC4/kernel/net/key/af_key.ko
> ipsec_setup: insmod
> /lib/modules/2.6.11-1.1369_FC4/kernel/net/ipv4/xfrm4_tunnel.ko
> [root at localhost gganga]# ipsec verify
> Checking your system to see if IPsec got installed and started correctly:
> Version check and ipsec on-path                                 [OK]
> Linux Openswan U2.4.4/K2.6.11-1.1369_FC4 (netkey)

> > Please help me in enabling the Manually Keyed IPSEC.

I think then that manual keying might not work with NETKEY. We probably
never tested it because our nightly tests run with KLIPS, and apart
from those tests, no one really uses manual keying.



More information about the Users mailing list