[Swan] I broke Libreswan with an SELINUX error

Paul Wouters paul at nohats.ca
Sun Sep 22 20:15:05 EEST 2013


On Sun, 22 Sep 2013, Nick Howitt wrote:

>             conn PaulIn
>              left=%defaultroute
>              right=%any
> 
>
>       In theory, we never "supposed" havng both endpoints dynamic, though it
>       apparently did work....
> 
> It always worked with Openswan

Not always. But I do agree I want to try and make this work as well as
it did before. I need to try and reduce your configuration to a proper
test case we can run....

>       I've checked the mailing lists. This was why 3.5-2 was released. Your comment was:
>             The quick fix is to add the following line after the "make install" in the spec file:
>
>             install -m 0755 initsystems/sysvinit/init.rhel.in %{buildroot}%{_initrddir}/ipsec
>
>             Or grab the src or binary rpm for libreswan-3.5-2 from downloads.libreswan.org.

Ah yes. I had only changed it in the spec to build the rpm, not in the
libreswan repository. I've commited that fix now. Thanks.

Paul


More information about the Swan mailing list