[Swan] Netkey not loading with libreswan

Krueger, Francis fkrueger at sscinc.com
Fri Jun 12 21:07:19 UTC 2020


Verifying installed system and configuration files



Version check and ipsec on-path                        [OK]

Libreswan U3.15/K(no kernel code presently loaded) on 2.6.32-754.30.2.el6.x86_64

Checking for IPsec support in kernel                   [FAILED]



 The ipsec service should be started before running 'ipsec verify'



Pluto ipsec.conf syntax                                [OK]

Hardware random device                                 [N/A]

Checking rp_filter                                     [OK]

Checking that pluto is running                         [FAILED]

Checking 'ip' command                                  [OK]

Checking 'iptables' command                            [OK]

Checking 'prelink' command does not interfere with FIPS    [PRESENT]

Checking for obsolete ipsec.conf options               [OK]

Opportunistic Encryption                               [DISABLED]



ipsec verify: encountered 3 errors - see 'man ipsec_verify' for help



Jun 12 21:05:57 lontsvm19003 ipsec__plutorun: Starting Pluto subsystem...

Jun 12 21:05:57 lontsvm19003 ipsec__plutorun: !pluto failure!:  exited with error status 139 (signal 11)

Jun 12 21:05:57 lontsvm19003 ipsec__plutorun: restarting IPsec after pause...


Jun 12 21:06:17 lontsvm19003 kernel: pluto[22470]: segfault at 3ff8 ip 00007fd37712593c sp 00007ffca1989e48 error 4 in libc-2.12.so[7fd3770aa000+18b000]

Any help appreciated.


More information about the Swan mailing list