Re: [Swan] Issue with networkmanager and l2tp

2020-10-26 Thread Brian McKee
Hi Paul and Doug, I couldn't figure out how to get 4.1 to work and went back to libreswan 3.32. I imagine I will have to face this again soon... Thanks again for trying to help me. On Mon, Oct 26, 2020 at 8:54 AM Paul Wouters wrote: > That is a configuration mismatch. So the end that is

Re: [Swan] Issue with networkmanager and l2tp

2020-10-26 Thread Paul Wouters
That is a configuration mismatch. So the end that is doing the wrong intention should change - I can’t tell which end that is Sent from my iPhone > On Oct 26, 2020, at 11:26, Brian McKee wrote: > >  > Hi Paul, > I have to admit, I misunderstood way back in the beginning and made too many >

Re: [Swan] Issue with networkmanager and l2tp

2020-10-26 Thread Brian McKee
Hi Paul, I have to admit, I misunderstood way back in the beginning and made too many changes to the ebuild. I thought that the whole config directory had moved, when it was only the nss directory. I have sorted that out now. All I had to do was have the ebuild create the /var/lib/ipsec/nss

Re: [Swan] Issue with networkmanager and l2tp

2020-10-25 Thread Paul Wouters
On Sun, 25 Oct 2020, Brian McKee wrote: I don't use systemd. I use openrc. Then try INITSYSTEM=openrc ? It is supported but perhaps in libreswan 4.x we broke it somehow? Paul ___ Swan mailing list Swan@lists.libreswan.org

Re: [Swan] Issue with networkmanager and l2tp

2020-10-25 Thread Brian McKee
t; > From: Brian McKee > > Cc: "Swan@lists.libreswan.org" > > To: Douglas Kosovic > > Subject: Re: [Swan] Issue with networkmanager and l2tp > > > > I found another beginner mistake in the ebuild and reinstalled libreswan. > > The me

Re: [Swan] Issue with networkmanager and l2tp

2020-10-25 Thread Paul Wouters
On Sun, 25 Oct 2020, Brian McKee wrote: Maybe explicitely build with INITSYSTEM=systemd and see if that fixes things? Paul Date: Sun, 25 Oct 2020 12:20:53 From: Brian McKee Cc: "Swan@lists.libreswan.org" To: Douglas Kosovic Subject: Re: [Swan] Issue with networkmanager and l2t

Re: [Swan] Issue with networkmanager and l2tp

2020-10-25 Thread Brian McKee
rks with init script. >>> >>> If you are using systemd, running the following might give a hint as to >>> what needs to be done or is missing. >>> >>> sudo systemctl restart ipsec.service >>> >>> >>> With systemd, I think it need

Re: [Swan] Issue with networkmanager and l2tp

2020-10-25 Thread Brian McKee
temd/system/ipsec.service >> >> >> Sorry I'm not familiar with openrc or if gentoo is using some >> openrc/systemd hybrid setup, but your rcscript suspicion seems plausible. >> >> >> >> Cheers, >> Doug >> >>

Re: [Swan] Issue with networkmanager and l2tp

2020-10-25 Thread Brian McKee
t; > > Cheers, > Doug > > -- > *From:* Brian McKee > *Sent:* Sunday, 25 October 2020 6:04 AM > *To:* Paul Wouters > *Cc:* Douglas Kosovic ; Swan@lists.libreswan.org < > Swan@lists.libreswan.org> > *Subject:* Re: [Swan] Issu

Re: [Swan] Issue with networkmanager and l2tp

2020-10-25 Thread Douglas Kosovic
hybrid setup, but your rcscript suspicion seems plausible. Cheers, Doug From: Brian McKee Sent: Sunday, 25 October 2020 6:04 AM To: Paul Wouters Cc: Douglas Kosovic ; Swan@lists.libreswan.org Subject: Re: [Swan] Issue with networkmanager and l2tp I have /sbin

Re: [Swan] Issue with networkmanager and l2tp

2020-10-24 Thread Brian McKee
I have /sbin/ipsec. I rebooted to get networkmanager to restart with the latest version of libreswan. I'm still getting an error message: Oct 24 12:58:23 threads NetworkManager[6097]: [1603569503.8941] audit: op="statistics" arg="refresh-rate-ms" pid=10312 uid=1000 result="success" Oct 24

Re: [Swan] Issue with networkmanager and l2tp

2020-10-24 Thread Paul Wouters
pluto[17294]: ignoring message from whack with bad magic 1869114160; should be 1869114159; Mismatched versions of userland tools. Sent It looks like either you have two installs (one in /usr and one in /usr/local or your pluto did not restart after installing a newer version ? Paul > On

Re: [Swan] Issue with networkmanager and l2tp

2020-10-24 Thread Douglas Kosovic
to establish the connection in the GUI. I’m just guessing nm-l2tp-service is located in /usr/libexec/ on gentoo. Cheers, Doug From: Brian McKee Sent: Saturday, 24 October 2020 1:26 PM To: Paul Wouters Cc: Douglas Kosovic ; swan@lists.libreswan.org Subject: Re: [Swan] Issue with networkmanager

Re: [Swan] Issue with networkmanager and l2tp

2020-10-23 Thread Brian McKee
Hi Paul and Doug, So I got libreswan 4.1 to install with the new folder by modifying the ebuild, but I'm still having problems. Here is the output of networkmanager: Oct 23 20:19:40 threads NetworkManager[4579]: [1603509580.7688] audit: op="statistics" arg="refresh-rate-ms" pid=5647 uid=1000

Re: [Swan] Issue with networkmanager and l2tp

2020-10-23 Thread Paul Wouters
On Fri, 23 Oct 2020, Brian McKee wrote: Thanks Doug!I'll open a ticket with the gentoo devs! They can compile with FINALNSSDIR=/etc/ipsec.d to keep the nss files at the same location if they prefer that. Note that libreswan-4.x also no longer builds support for DH2, and some NM-libreswan

Re: [Swan] Issue with networkmanager and l2tp

2020-10-23 Thread Brian McKee
Thanks Doug! I'll open a ticket with the gentoo devs! On Fri, Oct 23, 2020 at 5:04 AM Douglas Kosovic wrote: > Hi Brian, > > > > With Libreswan >= 4.0, the default NSS database files (*.db) have moved > from /etc/ipsec.d to /var/lib/ipsec/nss > > > > Try the following Libreswan command to see

Re: [Swan] Issue with networkmanager and l2tp

2020-10-23 Thread Douglas Kosovic
Hi Brian, With Libreswan >= 4.0, the default NSS database files (*.db) have moved from /etc/ipsec.d to /var/lib/ipsec/nss Try the following Libreswan command to see if you get an error : $ sudo ipsec initnss ERROR: destination directory "/var/lib/ipsec/nss" is missing or