Displaying 20 results from an estimated 6000 matches similar to: "Easiest way to compile custom kernel, for fedora +openswan+xen+patchomatic"
2005 Oct 20
1
2.4.30-xenU kernel / openswan 1.0.9
Hi list!:
I found this error trying to compile the kernel 2.4.30 after apply the
patches from openswan-1.0.9.
The error ocurrs using:
kernel 2.4.30 (xenU kernel)
iptables 1.3.3
patch-o-matic-ng-20051010
openswan 1.0.9
the menu fails going to netfilter configuration options
[root@xenkbunk linux-2.4.30-xenUOSW-1.0.9]# make CC=gcc33 ARCH=xen
menuconfig
rm -f include/asm
( cd include ; ln -sf
2005 May 02
9
Sanity check for Shorewall and Openswan VPN and 2.6
I''m just looking for a quick sanity check to make sure what I''m finding
is really all necessary here.
I''m upgrading a gateway/firewall from Linux 2.4 to 2.6 using Mandrake 10.1.
In the old 2.4 kernel I structured my firewall rules around the ipsec0
interface, which I understand isn''t present with Openswan
running under 2.6 (no KLIPS). Ok,
So as I start to
2015 Apr 14
3
state of IPSec VPN on CentOS 7: Openswan, strongSwan, RPM packages
I looked in the yum repositories for CentOS 7 and I noticed that there
are no packages for any of the major open source IPSec VPN apps -
Openswan, strongSwan, etc. I'm pretty sure CentOS 6 had Openswan
packages.
What is the current consensus w.r.t. building an IPSec VPN "server"
(concentrator, whatever) on CentOS 7, that will do site-to-site
connections with Cisco hardware at
2016 Feb 17
2
Openswan <-> VyOS
Hello,
I'm having a bit of trouble connecting our current CentOS Openswan server
with a Vyos server via IPSec.
I've posted this on the VyOS forums, but haven't had many helpful
responses, so I thought I would ask here.
http://forum.vyos.net/showthread.php?tid=26504&pid=29703#pid29703
Basically our Openswan configuration is as follows:
conn VYOS
keyingtries=0
2006 Mar 27
1
CentOS 3 and openswan > 2.2.1
Hi,
is there anybody running centos3 (el3) with a standard kernel 2.4.32 or
newer, because it seems openswan versions > 2.21 don''t run with
centos3(el3) anymore.
But we need the newer openswan versions.
Problem arise when I try to build the ipsec.o module:
/usr/src/openswan-2.4.4/linux/net/ipsec/ipsec_init.c
/usr/src/openswan-2.4.4/linux/net/ipsec/ipsec_init.c: In function
2014 Mar 07
2
Latest openswan update does no longer connect to Cisco VPN 3000 Series
Does anyone else noticed problems after updating openswan to
openswan-2.6.32-27.2.el6_5.i686 ? In our case a connection to Cisco VPN
3000 Series would no longer work. I can see in the log an ASSERTION FAILED
error and the connection would remain in Pending phase 2.
Mar 7 16:24:40 firewall pluto[7647]: "ciscovpntest" #2: discarding
duplicate packet; already STATE_MAIN_I1
Mar 7
2006 Aug 16
2
Openswan 2.4.6rc5 under CentOS 4.3
Hello,
I'm trying to get Openswan running in a CentOS 4.3 environment. I want to
modify as little as possible so that the machine can be kept up to date
easily. I'd rather not compile a special kernel, but if that's the only
solution, no problem (I don't need NAT traversal).
It's running kernel 2.6.9-34.0.2.EL. Installed the kerneldevel RPM (and
kernel src rpm as well). I
2015 Apr 14
2
state of IPSec VPN on CentOS 7: Openswan, strongSwan, RPM packages
On 2015-04-14 11:25, Gordon Messmer wrote:
> On 04/14/2015 11:07 AM, Florin Andrei wrote:
>> I looked in the yum repositories for CentOS 7 and I noticed that there
>> are no packages for any of the major open source IPSec VPN apps -
>> Openswan, strongSwan, etc. I'm pretty sure CentOS 6 had Openswan
>> packages.
>
> libreswan replaced openswan, and is
2016 Feb 09
2
OpenSwan Drop Out Issue
Centos 5 is also a bit old os. Is it possible to use newer version? (like
centos 7 or centos 6?)
Eero
2016-02-09 19:52 GMT+02:00 Gordon Messmer <gordon.messmer at gmail.com>:
> On 02/09/2016 07:04 AM, John Cenile wrote:
>
>> does anyone have any suggestions on what the problem might be?
>>
>
> Not off the top of my head, but if I were you, I'd enable debugging
2004 Oct 24
2
openswan+shorewall+kernel 2.6.8 debian
I am trying to get a debian system with openswan 2.2 shorewall 2.1.11 + debian kernel 2.6.8 working together. I have
read the documentation (IPSEC using Linux Kernel 2.6) and before I go and compile my own modules I would like to know
if the standard debian kernel already has the Netfilter+ipsec patches and the policy match patches installed.
Does anyone know?
thanks
Jim
2009 Aug 12
6
Shorewall (Openswan) IPSEC VPN MASQ Problem
Hi,
I have setup a IPSEC VPN using Openswan to connect a Draytek router to a
CentOS 5.2/Shorewall 4.2.9 firewall. The VPN establishes OK but I''m
getting a problem with packets from the left hand subnet getting
masqueraded rather than routed down the IPSEC VPN as though they were
going out onto the net. I''ve spent the last day searching Google and so
far I''ve hit a
2012 May 14
1
Openswan or Ipsec-tools?
Hi,
I wonder what is better on CentOS 6 if openswan or ipsec-tools, what
do you recommend me?
(I can't use openvpn)
Thanks in advance!
--
--
Sergio Belkin ?http://www.sergiobelkin.com
Watch More TV http://sebelk.blogspot.com
LPIC-2 Certified - http://www.lpi.org
2015 Apr 14
1
state of IPSec VPN on CentOS 7: Openswan, strongSwan, RPM packages
On 2015-04-14 11:44, Eero Volotinen wrote:
> 2015-04-14 21:40 GMT+03:00 Florin Andrei <florin at andrei.myip.org>:
>>
>> http://serverfault.com/a/655752/24406
>>
>> If that is accurate, the documentation, and the clustering / load
>> balancing might tilt the balance in the direction of strongSwan.
>>
>>
> Well, both packages can do ipsec to
2016 Feb 10
2
OpenSwan Drop Out Issue
Well. Centos 5 is really near of it's end of life. There is not much
updates to kernel or openswan. You should at least try latest openswan
version.
Your issue looks like a bit network problem.
--
Eero
2016-02-10 8:34 GMT+02:00 John Cenile <jcenile1983 at gmail.com>:
> So lowering the keylife / ikelifetime didn't solve the problem. I've
> enabled debugging and I'll
2005 May 04
4
OpenSwan traffic shaping with HTB & sfq
Hi All,
I''ve got an interoffice IPSEC VPN in place that I''m trying to give
priority to terminal service (tcp 3389) traffic.
I''ve created rules at each end, but have hit a bit of a dillemma. As
the data is encrypted I must also give highest priority to protocol 50
otherwise the priority is lost as the packet gets encrypted.
When I do this however, I can''t
2016 Feb 09
4
OpenSwan Drop Out Issue
Hello,
I'm cross posting this from the OpenSwan mailing list, in case someone here
can help.
We have two sites connected via OpenSwan 2.6.32-9 on CentOS 5, sharing 6
/24 subnets each (so 12 in total).
The problem we're having is completely randomly, be it in the middle of the
day, or in the middle of the night (so I don't believe it's traffic
related), certain (and sometimes
2007 Jun 29
3
[PATCH] Make xendomains ignore lost+found
As requested by Mark Williamson in BZ #681
Signed-off-by: Gawain Lynch <gawain.lynch@gmail.com>
--- xendomains.orig 2006-06-17 14:35:48.000000000 +1000
+++ xendomains 2006-06-17 14:45:29.000000000 +1000
@@ -207,10 +207,11 @@
if [ "$XENDOMAINS_RESTORE" = "true" ] &&
contains_something "$XENDOMAINS_SAVE"
then
+ XENDOMAINS_SAVED=`/bin/ls
2004 Oct 31
9
Maquerading through IPSECed wireless dropping packets selectively?
Hello,
I''m stuck IPSECing my wireless network at home and would appreciate any
comments. I appologize in advance if I''m wasting your time with trivia -
I''m not a professional and staring at the problem for days from various
angles hasn''t done me any good ...
My home server/firewall (morannon) is hooked up through an USB to
ethernet adapter (eth1) to my DSL
2006 May 10
3
Rsync via ssh hangs on same file repeatedly
Hi all,
I'm having problems with an rsync via ssh process hanging during transfer.
The basic problem, (gory details to follow):
I've set up a machine on my LAN to act as the receiver and have two
(soon to be more) remote servers transferring files via a script.
It seems as if certain files are causing the transfer to hang. These
are different files on each of the sending machines,
2004 Apr 19
1
CLASSIFY target documentation
Where can I find information on the CLASSIFY target? I saw it in some
examples people posted on this list, but I cannot find it in the LARTC
Howto or with Google.
I need to classify packets into PRIO queues based on iptables rules. I
am currently setting MARKs during classification. Unfortunately, if I
understand correctly u32 cannot see marks because they''re not in the
packet, so my