<html>
<head>
<meta http-equiv="content-type" content="text/html; charset=UTF-8">
</head>
<body text="#000000" bgcolor="#FFFFFF">
Hi,<br>
<br>
I am using strongswan version 5.0.2. This installation seems to work
quite well till recently. I am not sure what have caused this error.
When we run the command ipsec secrets this command fails with the
below error. <br>
<br>
[etc]$ sudo bash -x /usr/local/sbin/ipsec secrets<br>
+ PATH=/sbin:/bin:/usr/sbin:/usr/bin:/usr/local/sbin<br>
+ export PATH<br>
++ uname -s<br>
+ OS_NAME=Linux<br>
+ IPSEC_NAME=strongSwan<br>
++ uname -r<br>
+ IPSEC_VERSION=U5.0.2/K2.6.39-400.17.1.el6uek.x86_64<br>
+ IPSEC_DIR=/usr/local/libexec/ipsec<br>
+ IPSEC_SBINDIR=/usr/local/sbin<br>
+ IPSEC_CONFDIR=/usr/local/etc<br>
+ IPSEC_PIDDIR=/var/run<br>
+ IPSEC_SCRIPT=ipsec<br>
+ IPSEC_STARTER_PID=/var/run/starter.pid<br>
+ IPSEC_CHARON_PID=/var/run/charon.pid<br>
+ IPSEC_STROKE=/usr/local/libexec/ipsec/stroke<br>
+ IPSEC_STARTER=/usr/local/libexec/ipsec/starter<br>
+ export IPSEC_DIR IPSEC_SBINDIR IPSEC_CONFDIR IPSEC_PIDDIR
IPSEC_SCRIPT IPSEC_VERSION IPSEC_NAME IPSEC_STARTER_PID
IPSEC_CHARON_PID<br>
+ IPSEC_DISTRO='Institute for Internet Technologies and
Applications\nUniversity of Applied Sciences Rapperswil,
Switzerland'<br>
+ case "$1" in<br>
+ rc=7<br>
+ '[' -e /var/run/charon.pid ']'<br>
+ /usr/local/libexec/ipsec/stroke rereadsecrets<br>
<b>parsing value failed near</b><b><br>
</b><b>failed to include '/tmp/*-strongswan.conf'</b><br>
<br>
[etc]$ ls -lrt /tmp/*-strongswan.conf<br>
-rw-r--r-- 1 root root 1490 Oct 19 08:30
/tmp/strongSwan-strongswan.conf<br>
-rw-r--r-- 1 root root 0 Jan 18 21:43
/tmp/strongSwan-init-strongswan.conf<br>
<br>
and /tmp/strongSwan-strongswan.conf file is as follows:<br>
<br>
charon {<br>
install_virtual_ip = no<br>
<br>
filelog {<br>
/var/log/charon.log {<br>
# add a timestamp prefix<br>
time_format = %b %e %T<br>
# loggers to files also accept the append option to
open files in<br>
# append mode at startup (default is yes)<br>
append = yes<br>
# the default loglevel for all daemon subsystems
(defaults to 1).<br>
default = 1<br>
# flush each line to disk<br>
flush_line = yes<br>
}<br>
stderr {<br>
# more detailed loglevel for a specific subsystem,
overriding the<br>
# default loglevel.<br>
ike = 2<br>
knl = 3<br>
# prepend connection name, simplifies grepping<br>
ike_name = yes<br>
}<br>
}<br>
# And two loggers using syslog. The subsections define the
facility to log<br>
# to, currently one of: daemon, auth.<br>
syslog {<br>
# optional identifier used with openlog(3), prepended to
each log message<br>
# by syslog. if not configured, openlog(3) is not called, so
the value will<br>
# depend on system defaults (usually the program name)<br>
identifier = charon-custom<br>
# default level to the LOG_DAEMON facility<br>
daemon {<br>
default = 0<br>
}<br>
# very minimalistic IKE auditing logs to LOG_AUTHPRIV<br>
auth {<br>
default = -1<br>
ike = 0<br>
}<br>
}<br>
}<br>
<br>
Can somebody help me in identifying what exactly is the issue? I am
suspecting some thing related to configuration.<br>
<br>
Thanks,<br>
Sirisha<br>
</body>
</html>