Topic: freeswan with 6.0

[Lowell]

Can you tell me if - devinfo-freeswan-1.99 - will work with 6.0b3?
Lowell

[Lloyd Keen]

Yes I've just setup a tunnel between two 6.0b3 boxes and it seems to working fine. There are some X509 binaries compiled for this kernel You can download them here http://download.freeswan.ca/freeswan-x509/RedHat-RPMs/1.99/2.4.20-18.7/ Install the freeswan binaries first then install dev-info next using --nodeps.
I did have an error come up on one of the sites about rp_filter = 1 should be 0 so I changed it and the tunnel came up staright away.
[root@server root]# service ipsec restart
ipsec_setup: Stopping FreeS/WAN IPsec...
ipsec_setup: Starting FreeS/WAN IPsec 1.99...
ipsec_setup: Using /lib/modules/2.4.20-18.7smp/kernel/net/ipsec/ipsec.o
ipsec_setup: WARNING: eth1 has route filtering turned on, KLIPS may not work
ipsec_setup:  (/proc/sys/net/ipv4/conf/eth1/rp_filter = 1', should be 0)
[root@server root]# echo "0" > /proc/sys/net/ipv4/conf/eth1/rp_filter
[root@server root]# cat /proc/sys/net/ipv4/conf/eth1/rp_filter
0
[root@server root]# service ipsec restart
ipsec_setup: Stopping FreeS/WAN IPsec...
ipsec_setup: Starting FreeS/WAN IPsec 1.99...
ipsec_setup: Using /lib/modules/2.4.20-18.7smp/kernel/net/ipsec/ipsec.o
[root@server root]# rpm -q devinfo-freeswan
devinfo-freeswan-1.99-6sme56
[root@server root]# rpm -q freeswan
freeswan-1.99_x509_0.9.15_2.4.20_18.7-1
[root@server root]# rpm -q freeswan-module
freeswan-module-1.99_x509_0.9.15_2.4.20_18.7-1
HTH Regards Lloyd

[lilkev]

Hi Lloyd
THanks for this how-to, it has been a big help.....almost. I'm hoping you can shed a little more light on a problem.

I have installed the packages, I could not find devinfo-freeswan-1.99-6sme56 what does this do?

I got the same errors about the rp_filter being 1 not 0, yet when I cat'd the appropriate file I got a "0" return. So far the tunnel has not come up. Can yu shed a bit of light on what I may be missing?

Many Thanks

Kev

[psc]

devinfo-freeswan-1.99-8sme56 installs the server-manager panels and a few scripts and templates.

Install this contrib with:
rpm -ivh --nodeps devinfo-freeswan-1.99/devinfo-freeswan-1.99-8sme56.noarch.rpm

AFTER that:
/sbin/e-smith/signal-event ipsec-install

Download from:

http://mirror.contribs.org/smeserver/contribs/saco/contrib/devinfo-freeswan-1.99/devinfo-freeswan-1.99-8sme56.noarch.rpm

[leonardocruz]

hi i am verynew is this i config only dlink routers or windows server, now i need connect two network and this appear good, i install ones sme server from 5 trhu 7.9b and all is ok, i try this howto but the server dont see one to other. i'm trying with two SME 6.01 server.
1-download the 3 files, Freeswan-1*.rpg y -M*.rpm and devinfo*.rpm
2- i install with: rpm -ivh --nodeps freeswan-1*.rpm
                       rpm -ivh --nodeps freeswan-m*.rpm
                       rpm -ivh --nodeps devinfo*.rpm
(the step 2 is working fine!)

3- #echo "0" > /proc/sys/net/ipv4/conf/eth1/rp_filter
    #cat /proc/sys/net/ipv4/conf/eth1/rp_filter
    #/sbin/e-smith/signal-event ipsec-install
(i unknow what doing the step 3, for what this refer to eth1 and no to eth0)

4- #service ipsec start

5- email the signature of server in panel in both server
6- define the remote lan for each server how local
7- create the ipvsec vpn

and not function the VPN

what i doing BAD i try with next
http://www.l-download.homelinux.com/how%20to/vpn_howto.pdf
tutorial step by step but no function my Vpn


wleonardocruz @ gmail dot com