Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
| Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
02-05-2006, 12:51 AM
|
#1
|
|
LQ Newbie
Registered: Jan 2006
Posts: 14
Rep: 
|
facing problems in OPENSWAN implementation
hi all,
my distro is vl
kernel 2.6.12.3
i have downloaded openswan 2.4.4
i am facing certain problems during installation of openswan
they are as under:
1. on executing command - ipsec verify, i am getting
[root@amit/usr/src/linux-2.6.12.3]# ipsec verify
Checking your system to see if IPsec got installed and started correctly:
Version check and ipsec on-path [OK]
Linux Openswan U2.4.4/K2.6.12 (netkey)
Checking for IPsec support in kernel [OK]
Checking for RSA private key (/etc/ipsec.secrets) [FAILED]
ipsec showhostkey: file `/etc/ipsec.secrets' does not exist
Checking that pluto is running [FAILED]
whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")
Checking for 'ip' command [OK]
Checking for 'iptables' command [OK]
Checking for 'setkey' command for NETKEY IPsec stack support [FAILED]
which: no setkey in (/sbin:/usr/bin:/usr/local/sbin:/usr/local/sbin:/usr/local/sbin:/sbin:/usr/sbin:/usr/local/bin:/bin:/usr/bin)
Opportunistic Encryption Support [DISABLED]
which: no setkey in (/sbin:/usr/bin:/usr/local/sbin:/usr/local/sbin:/usr/local/sbin:/sbin:/usr/sbin:/usr/local/bin:/bin:/usr/bin)
please guide me as to how to resolve the above 'failed' supports.
2. i am also not able to locate the ipsec.secrets file. i have already looked in /etc.
please help me in resolving the above issues.
|
|
|
|
|
02-06-2006, 07:05 AM
|
#2
|
|
Member
Registered: Mar 2005
Location: Netherlands
Distribution: FC4, debian, SuSE
Posts: 64
Rep: 
|
Hi,
I am using FC4, for me the setkey util came with a package called
ipsec-tools-0.5-2.fc3.rpm
so it looks like you're missing something?
|
|
|
|
|
02-06-2006, 09:04 AM
|
#3
|
|
LQ Newbie
Registered: Jan 2006
Posts: 14
Original Poster
Rep:
|
hi acidzebra,
problem regarding RSA key has been resolved to some extent.
just wanted to check up regarding --
Checking that pluto is running [FAILED]
whack: Pluto is not running (no "/var/run/pluto/pluto.ctl")
does the above shows 'ok' when running on a standalone pc ie without a network card ... or else it runs only in a network.
i will be grateful if you can check this out.
thanx for the advise of ippsec tools package but it is already there.
|
|
|
|
|
02-06-2006, 09:09 AM
|
#4
|
|
Member
Registered: Mar 2005
Location: Netherlands
Distribution: FC4, debian, SuSE
Posts: 64
Rep:
|
I'll have to bow out for those problems (aside from the fact that I'm scratching my head as to why you would want freeSWAN on a no-networkPC) as I don't openSWAN much. I just noticed that you couldn't find setkey.
|
|
|
|
|
02-07-2006, 09:12 AM
|
#5
|
|
LQ Newbie
Registered: Jan 2006
Posts: 14
Original Poster
Rep:
|
hi acidzebra,
basically i am trying to set up a secure lan with openswan implemented....
as a start i am trying to configure openswan in a standalone pc (at least the basic setup) but this also seems to be running into above mentioned problem of pluto support...
the above is with respect to your query...
anyway thanx for your help.
|
|
|
|
All times are GMT -5. The time now is 01:00 PM.
|
|
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
|
 Latest Threads
LQ News
|
|
