• view
• edit
• upload
• print
• history

Documenting as I go along on my attempt at getting openswan on FC1.

First get the latest atrpms rpm for kernel and openswan from:

  http://ATrpms.net/name/kernel/

  (Note: that the arpms version of the kernel contains the NAT-T patch,
  if you don't want to use NAT-T you can just use the standard Fedora kernel)

  The atrpm kernel ends in something like: _49.rhfc1.at

If you use the atrpms kernel, get openswan rpms from:

  http://ATrpms.net/name/openswan/

If you are using the stock redhat kernel, get openswan rpms from:

  http://dag.wieers.com/packages/kernel-module-openswan/

RWM notes:

• Installed from YUM repository: kernel-2.4.22-1.2199.nptl.athlon kernel-source-2.4.22-1.2199.nptl.i386
• Download/untar: openswan-2.1.5.tar.gz
• cd packaging/redhat
• make RH_KERNELSRC=/usr/src/linux-2.4.22-1.2199.nptl rpm
• Installed RPMs: rpm -Uvh openswan-userland-2.1.5_2.4.22_1.2199.nptl-0.i386.rpm openswan-module-2.1.5_2.4.22_1.2199.nptl-0.i386.rpm
• Reboot -- I seemed to need to 'modprobe ipsec.o-athlon' to get KLIPS - I guess I thought something would have detected kernel and tried to link to right module?
• started ipsec: service ipsec start
• tested basic install: ipsec verify (failed where I expected it to fail -- test machine is 'not on the net' and thus doesn't have any DNS/etc stuff set up correctly)