• Home
  • Help
  • Search
  • Login
  • Register
Pages: [1]
Author Topic: Support for openswan in 2.6.32.9  (Read 2788 times)
Kenton1
Newbie
*

Karma: 1
Posts: 12


View Profile
« on: May 04, 2010, 08:05:25 AM »

Hi All,
I'm trying to install openswan with Kernel 2.6.32.9. initially i was using 2.4.12. I managed to get IPSEC SA established (using windows L2TP/IPSEC client) however wasn't able to get xl2tpd going.
I have now tried to install openswan 2.6.25 but ipsec is not running correctly
ipsec verify is failing here:
Pluto listening for IKE on udp 500                              [FAILED]
  Cannot execute command "lsof -i UDP:500": No such file or directory
Pluto listening for NAT-T on udp 4500                           [FAILED]
  Cannot execute command "lsof -i UDP:4500": No such file or directory

Should 2.6.32.9 be able to support openswan ?

Thanks,
Mike
Logged

cbxbiker61
Global Moderator
Sr. Member
*****

Karma: 38
Posts: 497


View Profile
« Reply #1 on: May 04, 2010, 11:47:25 AM »

Your error messages mean that "lsof" (list open files) is not installed.  You should install it.
Logged

FrankL
Newbie
*

Karma: 1
Posts: 9


View Profile
« Reply #2 on: November 17, 2010, 03:41:02 PM »

same problem on my kirkwood device. 'Fixed' by blacklisting mv_cesa module in /etc/modprobe.d/blacklist

Seems to be a bug in mv_cesa with ipsec in type=transport mode?! I hope this gets resolved, as hw crypto acceleration is really nice on kirkwood for dmcrypt/cryptsetup.

by the way, xl2tpd performs really abysmally on my arm boxes! (haven't tried on x86). Is this a common problem for xl2tpd? openl2tpd has much better performance, but is not the end-all as it has its own, different, issues.
Logged

FrankL
Newbie
*

Karma: 1
Posts: 9


View Profile
« Reply #3 on: December 01, 2010, 08:05:03 AM »

seems to be fixed in kernel 2.6.36
Logged

Pages: [1]
Print
Jump to: