[strongSwan] Compiling 5.2.2 for CentOS troubles

Noel Kuntze noel at familie-kuntze.de
Thu Mar 5 01:12:19 CET 2015 

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Hello,

The strongSwan configuration files on CentOS are all in /etc/strongswan/.
Because CentOS shipps with libreswan, whose configuration files are directly in /etc/ and are also called "ipsec.conf" and "ipsec.secrets",
it is plausible that strongSwan tries to load those, as you didn't specify /etc/strongswan/ as configuration directories.
You probably also have libreswan installed or openswan, so those configuration files are getting loaded. Also, be aware that
Selinux is probably active, so you have to deal with that, too.

Mit freundlichen Grüßen/Regards,
Noel Kuntze

GPG Key ID: 0x63EC6658
Fingerprint: 23CA BB60 2146 05E7 7278 6592 3839 298F 63EC 6658

Am 05.03.2015 um 01:03 schrieb Randy Wyatt:
> By chance,  Did you have openswan installed?  Those keywords remind me of the other SWAN package.
>
> Regards,
> Randy
>
> On Wed, Mar 4, 2015 at 3:29 PM, Aaron Roquena <aroquena at motorola.com <mailto:aroquena at motorola.com>> wrote:
>
>     I'm trying to install 5.2.2 from source since there's not an RPM for CentOS 6 at the moment and experiencing problems. I try
>
>     ./configure --prefix=/usr --sysconfdir=/etc \
>     --enable-acert \
>     --enable-curl \
>     --enable-dhcp \
>     --enable-eap-gtc \
>     --enable-eap-identity \
>     --enable-eap-md5 \
>     --enable-eap-mschapv2 \
>     --enable-eap-peap \
>     --enable-eap-tls \
>     --enable-eap-ttls \
>     --enable-farp \
>     --enable-md4 \
>     --enable-openssl \
>     --enable-vici \
>     --enable-xauth-eap \
>     --enable-xauth-noauth \
>     --enable-xauth-pam \
>     --enable-cmd
>
>     and when I go to run  "ipsec starter", my old config files from 5.2.0 rpm don't work and the below warning pop up.  The configs are for an IPSec VPN. The VPN doesn't connect. What am I missing?
>
>     > ipsec starter
>     Starting strongSwan 5.2.2 IPsec [starter]...
>     # deprecated keyword 'nat_traversal' in config setup
>     # unknown keyword 'oe'
>     # unknown keyword 'protostack'
>     # deprecated keyword 'virtual_private' in config setup
>     # unknown keyword 'phase2'
>     # unknown keyword 'phase2alg'
>     # unknown keyword 'rightsubnets'
>     ### 7 parsing errors (0 fatal) ###
>
>     Thanks for any help,
>
>     AR
>
>     _______________________________________________
>     Users mailing list
>     Users at lists.strongswan.org <mailto:Users at lists.strongswan.org>
>     https://lists.strongswan.org/mailman/listinfo/users
>
>
>
>
> --
> Randy W. Wyatt
> rwwyatt01 at gmail.com <mailto:rwwyatt01 at gmail.com>
> Home: 858-309-5303
> Cell: 858-598-4421
> Fax: 858-408-7554
>    
>
>
>
> _______________________________________________
> Users mailing list
> Users at lists.strongswan.org
> https://lists.strongswan.org/mailman/listinfo/users

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
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=ewvV
-----END PGP SIGNATURE-----

More information about the Users mailing list