Topic: Freeswan installation problems

[Mark Farey]

I am trying to get Freeswan working between my home and work. The home set up seems OK and displays properly in the server-manager.

When I follow the install at work I am only able to get ipsec to run when I use the athlon compile of the freeswan-module, even though uname -m gives "i686". I guess that's my hardware.

If I then run the ipsec-install or vpn-modify event it kills ipsec. If I then do a service ipsec status I get:

ipsec_setup: (/etc/ipsec.conf, line 1) cannot open configuration file "/etc/ipsec.conf" -- status' aborted

and the ipsec.conf file is missing.

Any suggestions please before I go crazy!  

TIA
Mark.

[Lloyd Keen]

Mark,
I would try starting from scratch. Uninstall all three rpms (freeswan, freeswan-module and devinfo-freeswan) then re-install them. Carefully follow the procedure here http://mirror.contribs.org/smeserver/contribs/dmay/mitel/contrib/freeswan/sme55/freeswan-howto.html. After following the procedure do not modify /etc/ipsec.conf directly (there is no need to uncomment the pubkey section) Your setup may be a little non standard as you are setting up a road warrior connection. See here http://forums.contribs.org/index.php?topic=14029.msg53340#msg53340 for more info regarding this setup. Not sure where you get the athlon compile from, but the three rpm's that you had installed should do the trick.

[Mark Farey]

Lloyd,

Thanks for your comments. I have tried the reinstall as you suggested but to no avail. I am beginning to think this is hardware-related since I had most success with the athlon compile (not sure where I got that) and the same install seems to work fine on my klunky home system.

I've decided to bite the bullet and sign up with Mitel for their Servicelink, plus try to get some expert help locally to get my VPN working. I don't mind experimenting but I don't want to screw up the gateway at work.

Many thanks for your help.

Regards,
Mark.