Hi: I finally got around to fixing up the start/stop scripts and actually testing them :) So here is an updated patch against FreeSWAN 2.00 which should work as is. Please let me know if there are any errors remaining in the scripts or elsewhere. The patch can be downloaded from: http://gondor.apana.org.au/~herbert/freeswan/freeswan-linux-ipsec-20030521.patch.gz Note that if you're not using the latest BitKeeper source for Linux, then you will still need to apply the following patch. These things still need to be done for full functionality: . shunt routes . NAT traversal I still haven't heard of anything as to whether this patch breaks KLIPS. Please let me know if you've tested it against KLIPS. Cheers, -- Debian GNU/Linux 3.0 is out! ( http://www.debian.org/ ) Email: Herbert Xu ~{PmV>HI~} <herbert@gondor.apana.org.au> Home Page: http://gondor.apana.org.au/~herbert/ PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt
Index: include/linux/pfkeyv2.h =================================================================== RCS file: /home/gondolin/herbert/src/CVS/debian/kernel-source-2.5/include/linux/pfkeyv2.h,v retrieving revision 1.1.1.5 diff -u -r1.1.1.5 pfkeyv2.h --- include/linux/pfkeyv2.h 7 Apr 2003 17:32:27 -0000 1.1.1.5 +++ include/linux/pfkeyv2.h 11 May 2003 05:11:28 -0000 @@ -275,8 +275,8 @@ /* Encryption algorithms */ #define SADB_EALG_NONE 0 -#define SADB_EALG_DESCBC 1 -#define SADB_EALG_3DESCBC 2 +#define SADB_EALG_DESCBC 2 +#define SADB_EALG_3DESCBC 3 #define SADB_X_EALG_CASTCBC 6 #define SADB_X_EALG_BLOWFISHCBC 7 #define SADB_EALG_NULL 11
