[Openswan Users] KLIPS message dmesg
Paul Wouters
paul at xelerance.com
Thu Nov 2 17:07:42 EST 2006
On Thu, 2 Nov 2006, André Marascalchi Zenun wrote:
> Well I patch my kernel with the openswan natt and klips patches and
> select them in the kernel configuration menu! I have configured
> everything built in! This is part of my kernel configuration
>
> #
> # Networking options
> #
> # CONFIG_NETDEBUG is not set
> CONFIG_PACKET=m
> CONFIG_PACKET_MMAP=y
> CONFIG_UNIX=m
> CONFIG_XFRM=y
> CONFIG_XFRM_USER=y
> CONFIG_NET_KEY=y
> CONFIG_INET_AH=y
> CONFIG_INET_ESP=y
> CONFIG_INET_IPCOMP=y
> CONFIG_INET_XFRM_TUNNEL=y
> CONFIG_INET_TUNNEL=y
> CONFIG_INET_XFRM_MODE_TUNNEL=y
> CONFIG_INET_DIAG=y
you added netkey inline!
> CONFIG_INET_XFRM_MODE_TRANSPORT=y
> CONFIG_KLIPS_ESP=y
> CONFIG_KLIPS_AH=y
> CONFIG_KLIPS_AUTH_HMAC_MD5=y
> CONFIG_KLIPS_AUTH_HMAC_SHA1=y
> CONFIG_KLIPS_ENC_CRYPTOAPI=y
> CONFIG_KLIPS_ENC_1DES=y
> CONFIG_KLIPS_ENC_3DES=y
> CONFIG_KLIPS_ENC_AES=y
> CONFIG_KLIPS_ENC_NULL=y
> CONFIG_KLIPS_IPCOMP=y
> CONFIG_KLIPS_DEBUG=y
> As you can see I have almost everything built in! This could be the
> cause of this messages? It's better to have this ciphers as modules?
So if you start openswan using the scripts, it should abort for you
saying you cannot have both KLIPS and NETKEY. I assume you are not
using the scripts?
Paul
More information about the Users
mailing list