<div dir="ltr">Hi,<div>I need to run multiple ipsec charon daemons in multiple mininet namespaces (perhaps some semantics change from ip namespaces).</div><div><br></div><div><div>Sure enough, on following steps from <a href="https://wiki.strongswan.org/projects/strongswan/wiki/Netns">https://wiki.strongswan.org/projects/strongswan/wiki/Netns</a> (including piddir change), I could get multiple charon daemons running with<b> ip network namespaces</b>.</div></div><div><br></div><div>I am not trying to achieve two things:</div><div>1) Run multiple charon daemons with mininet namespaces</div><div>2) Be able to do so without requiring piddir configuration option change.</div><div><br></div><div>Regarding (1): I am not sure if mininet namespaces provide for bind mounting anything /etc/netns/<namespace name>/ to /etc/ for the process running in that network namespace -- if it doesn't, I will bind mount manually before starting charon/ipsec. So this should be okay.</div><div><br></div><div>But, I am trying to find how I can do away the piddir configuration change and make it work directly from the deb file install. Is there no way to achieve this? No environment variable that can be set?</div><div><br></div><div>Appreciate any comments/directions/pointers.<br></div><div><br></div><div>Thank you.</div><div>Piyush<div><br></div><div><br>-- <br><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><div dir="ltr"><div><span style="font-size:12.8px">Piyush Agarwal</span><br></div><div><span style="color:rgb(17,17,17)"><font face="arial, helvetica, sans-serif" size="2">Life can only be understood backwards; but it must be lived forwards.</font></span><br></div></div></div></div></div></div></div></div></div></div></div></div></div>
</div></div></div>