[Openswan Users] RES: RES: RES: RES: RES: Openswan with L2TP

Giovani Moda giovani at mrinformatica.com.br
Mon Sep 28 17:43:31 EDT 2009

> Are you sure that was not already used for another policy?

AFAIK yes, I checked for policy 22 and only IP_IPSEC_REFINFO was found.

> It also seems looking at it that saref.patch is missing most of
> the code. Please have a look at the version of
> the patch. And make sure 22 is available on your kernel. If you
> change that number, also change it for xl2tpd.

I took a look into it and yes, there are a lot more code in that version
of the patch. I'm trying to port it from to
kernel-2.6.18 (Centos 5.3) and kernel-2.6.23 (FC7), but I'm needing some

IP_CMSG_IPSEC_REFINFO references to ip_cmsg_recv_ipsec and
ip_cmsg_send_ipsec. If I keep that part of the patch, I get:

ue.c:206: undefined reference to `ip_cmsg_send_ipsec'
net/built-in.o: In function `ip_cmsg_recv':
ue.c:174: undefined reference to `ip_cmsg_recv_ipsec'

>From what I've been reading, those functions were moved to ipsec_mast.
In that case, can I just remove those references from the ip_sockglue.c

RTA_FWMARK and RTA_FWMARK_MASK on rtnetlink.h, as for the fib_rules.c
patch, are about iproute2? If so, you mentioned that should not be
needed. In that case can I take it out of the patch?

As you can see, I'm way over my head here, but I'm willing to try. Let
me know if I'm out of scope.

Thanks again,


__________ Information from ESET NOD32 Antivirus, version of virus
signature database 4465 (20090928) __________

The message was checked by ESET NOD32 Antivirus.


More information about the Users mailing list