Originally Posted by
Oleg
Well, yes it's possible. But you've to install bunch of other stuff to make ipsec work.
I've already installed and configured openswan, l2tpd and ppp. But for the userland software i'm using debian (see using debian on an usb stick). So the bunch of other stuff is not a problem.
Moreover as i said, the ipsec.o module (the only thing i have to start before entering debian currently) loads with success under your firmware.
So my problem currently is :
Code:
Apr 27 15:34:04 pluto[1829]: Starting Pluto (Openswan Version 2.2.0 X.509-1.5.4 PLUTO_USES_KEYRR)
Apr 27 15:34:04 ipsec_setup: ...Openswan IPsec started
Apr 27 15:34:05 pluto[1829]: including NAT-Traversal patch (Version 0.6c)
Apr 27 15:34:05 pluto[1829]: ike_alg_register_enc(): Activating OAKLEY_AES_CBC: Ok (ret=0)
Apr 27 15:34:05 pluto[1829]: Using KLIPS IPsec interface code
Apr 27 15:34:05 pluto[1829]: Changing to directory '/etc/ipsec.d/cacerts'
Apr 27 15:34:05 ipsec_setup: Starting Openswan IPsec U2.2.0/K2.1.2rc5...
Apr 27 15:34:05 pluto[1829]: Could not change to directory '/etc/ipsec.d/aacerts'
Apr 27 15:34:05 pluto[1829]: Changing to directory '/etc/ipsec.d/ocspcerts'
Apr 27 15:34:05 pluto[1829]: Changing to directory '/etc/ipsec.d/crls'
Apr 27 15:34:05 pluto[1829]: Warning: empty directory
Apr 27 15:34:14 pluto[1829]: added connection description "L2TP-PSK"
Apr 27 15:34:14 pluto[1829]: listening for IKE messages
Apr 27 15:34:14 pluto[1829]: NAT-Traversal: ESPINUDP(1) not supported by kernel -- NAT-T disabled
Apr 27 15:34:14 pluto[1829]: adding interface ipsec0/vlan1 81.56.77.86
Apr 27 15:34:14 pluto[1829]: NAT-Traversal: ESPINUDP(2) not supported by kernel -- NAT-T disabled
Apr 27 15:34:14 pluto[1829]: adding interface ipsec0/vlan1 81.56.77.86:4500
Apr 27 15:34:14 pluto[1829]: loading secrets from "/etc/ipsec.secrets"
Apr 27 15:34:14 ipsec__plutorun: 003 NAT-Traversal: ESPINUDP(1) not supported by kernel -- NAT-T disabled
Apr 27 15:34:14 ipsec__plutorun: 003 NAT-Traversal: ESPINUDP(2) not supported by kernel -- NAT-T disabled