[Openswan Users] Trouble with a Star Topo
Alex Crow
acrow at integrafin.co.uk
Wed Feb 27 13:54:58 EST 2013
Hmm, your choice. I think you will have a lot of fun - just keep a clean
copy of the kernel tree so you can reapply the patches from scratch
after one fails.
I am curious why they have not been merged into the mainline kernel
source - would solve a lot of grief. Anyone know?
On 27/02/13 18:25, Luis Nagaki wrote:
> so i am on 2.6.18 kernel and 2.6.16 or 2.6.22 patches are on that link
> provided earlier. which patch do i go with? 2.6.16 or 22?
>
>
> On Wed, Feb 27, 2013 at 1:18 PM, Alex Crow <acrow at integrafin.co.uk
> <mailto:acrow at integrafin.co.uk>> wrote:
>
> I only patched on Centos 6.x (I think) and it was a royal pain as
> I could not find a specific patch for that kernel.
>
> I had to go through the patches one by one and adjust line
> numbers, offsets and even some of the code. Took me about 8 hours
> in total but I got it working. Was a while back so perhaps newer
> RHEL patches have been released, and in your case with 5.x it
> might be easier.
>
> Cheers
>
> Alex
>
>
> On 27/02/13 16:42, Luis Nagaki wrote:
>> I hate spamming people,
>>
>> but i also can not get the patch itself either
>> ftp://ftp.openswan.org/openswan/development/
>>
>>
>>
>> On Wed, Feb 27, 2013 at 11:36 AM, Luis Nagaki
>> <luis.nagaki at gmail.com <mailto:luis.nagaki at gmail.com>> wrote:
>>
>> 2.6.18-348.1.1.el5 kernel
>>
>>
>> On Wed, Feb 27, 2013 at 11:26 AM, Luis Nagaki
>> <luis.nagaki at gmail.com <mailto:luis.nagaki at gmail.com>> wrote:
>>
>> Ah yes sorry , all are different Private IP's. So no
>> worries there.
>>
>>
>> On Wed, Feb 27, 2013 at 11:25 AM, Alex Crow
>> <acrow at integrafin.co.uk <mailto:acrow at integrafin.co.uk>>
>> wrote:
>>
>> Sorry, to clarify if you have multiple clients behind
>> the same NAT it will be needed. I think it may also
>> be needed if you have multiple clients behind
>> different routers but with the same private IPs.
>>
>>
>> On 27/02/13 16:22, Luis Nagaki wrote:
>>> just a quick one.. on the central server or the client?
>>>
>>>
>>> On Wed, Feb 27, 2013 at 11:16 AM, Luis Nagaki
>>> <luis.nagaki at gmail.com
>>> <mailto:luis.nagaki at gmail.com>> wrote:
>>>
>>> Yes behind NAT, let me research how to do such.
>>>
>>>
>>> On Wed, Feb 27, 2013 at 11:12 AM, Alex Crow
>>> <acrow at integrafin.co.uk
>>> <mailto:acrow at integrafin.co.uk>> wrote:
>>>
>>> Are your servers behind NAT? If so you will
>>> probably need to rebuild the kernels with
>>> the SAREF patches.
>>>
>>>
>>> On 27/02/13 15:31, Luis Nagaki wrote:
>>>> Hey guys, i did not notice until it was
>>>> deployed that 3 of the locations i sent a
>>>> Openswan server to had a star topo. All
>>>> their offices go through a central office
>>>> and then out to the internet. the 1st
>>>> location connected just fine but when the
>>>> 2nd came on it through the 1st off. How can
>>>> i go around this to make i work?
>>>>
>>>> --
>>>> This message has been scanned for viruses and
>>>> dangerous content by *MailScanner*
>>>> <http://www.mailscanner.info/>, and is
>>>> believed to be clean.
>>>>
>>>>
>>>> _______________________________________________
>>>> Users at lists.openswan.org <mailto:Users at lists.openswan.org>
>>>> https://lists.openswan.org/mailman/listinfo/users
>>>> Micropayments:https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
>>>> Building and Integrating Virtual Private Networks with Openswan:
>>>> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>>>
>>>
>>> --
>>> This message is intended only for the addressee and may contain
>>> confidential information. Unless you are that person, you may not
>>> disclose its contents or use it in any way and are requested to delete
>>> the message along with any attachments and notify us immediately.
>>>
>>> "Transact" is operated by Integrated Financial Arrangements plc
>>> 29 Clement's Lane, London EC4N 7AE
>>> Tel: (020) 7608 4900 Fax: (020) 7608 5300
>>> (Registered office: as above; Registered in England and Wales under number: 3727592)
>>> Authorised and regulated by the Financial Services Authority (entered on the FSA Register; number: 190856)
>>>
>>>
>>> _______________________________________________
>>> Users at lists.openswan.org
>>> <mailto:Users at lists.openswan.org>
>>> https://lists.openswan.org/mailman/listinfo/users
>>> Micropayments:
>>> https://flattr.com/thing/38387/IPsec-for-Linux-made-easy
>>> Building and Integrating Virtual Private
>>> Networks with Openswan:
>>> http://www.amazon.com/gp/product/1904811256/104-3099591-2946327?n=283155
>>>
>>>
>>>
>>>
>>> --
>>> This message has been scanned for viruses and
>>> dangerous content by *MailScanner*
>>> <http://www.mailscanner.info/>, and is
>>> believed to be clean.
>>
>>
>> --
>> This message is intended only for the addressee and may contain
>> confidential information. Unless you are that person, you may not
>> disclose its contents or use it in any way and are requested to delete
>> the message along with any attachments and notify us immediately.
>>
>> "Transact" is operated by Integrated Financial Arrangements plc
>> 29 Clement's Lane, London EC4N 7AE
>> Tel: (020) 7608 4900 Fax: (020) 7608 5300
>> (Registered office: as above; Registered in England and Wales under number: 3727592)
>> Authorised and regulated by the Financial Services Authority (entered on the FSA Register; number: 190856)
>>
>>
>>
>>
>>
>> --
>> This message has been scanned for viruses and
>> dangerous content by *MailScanner*
>> <http://www.mailscanner.info/>, and is
>> believed to be clean.
>
>
>
> --
> This message has been scanned for viruses and
> dangerous content by *MailScanner* <http://www.mailscanner.info/>, and is
> believed to be clean.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.openswan.org/pipermail/users/attachments/20130227/9a509caf/attachment-0001.html>
More information about the Users
mailing list