This seems unlikely to be fixed in Trusty now. If someone wants to drive
this (prepare a minimal backport, etc), then please comment and reopen.
** Also affects: strongswan (Ubuntu Trusty)
Importance: Undecided
Status: New
** Changed in: strongswan (Ubuntu Trusty)
Status: New =>
Not fixed in Ubuntu 14.04, still need to compile from strongswan source
package with the patch from comment #9.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1309594
Title:
kernel-libipsec not
This bug was fixed in the package strongswan - 5.3.5-1ubuntu1
---
strongswan (5.3.5-1ubuntu1) xenial; urgency=medium
* debian/{rules,control,libstrongswan-extra-plugins.install}
Enable bliss plugin
* debian/{rules,control,libstrongswan-extra-plugins.install}
Enable
This bug was fixed in the package strongswan - 5.3.5-1ubuntu1
---
strongswan (5.3.5-1ubuntu1) xenial; urgency=medium
* debian/{rules,control,libstrongswan-extra-plugins.install}
Enable bliss plugin
* debian/{rules,control,libstrongswan-extra-plugins.install}
Enable
I wonder why this is not fixed in official Ubuntu repos yet.
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1309594
Title:
kernel-libipsec not loading
To manage notifications about this bug go to:
I wonder why this is not fixed in official Ubuntu repos yet.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to strongswan in Ubuntu.
https://bugs.launchpad.net/bugs/1309594
Title:
kernel-libipsec not loading
To manage notifications
The attachment A patch to fix the kernel-libipsec plugin packaging.
seems to be a patch. If it isn't, please remove the patch flag from
the attachment, remove the patch tag, and if you are a member of the
~ubuntu-reviewers, unsubscribe the team.
[This is an automated message performed by a
The attachment A patch to fix the kernel-libipsec plugin packaging.
seems to be a patch. If it isn't, please remove the patch flag from
the attachment, remove the patch tag, and if you are a member of the
~ubuntu-reviewers, unsubscribe the team.
[This is an automated message performed by a
** Patch added: A patch to fix the kernel-libipsec plugin packaging.
https://bugs.launchpad.net/ubuntu/+source/strongswan/+bug/1309594/+attachment/4335861/+files/strongswan-kernel-libipsec.patch
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is
** Patch added: A patch to fix the kernel-libipsec plugin packaging.
https://bugs.launchpad.net/ubuntu/+source/strongswan/+bug/1309594/+attachment/4335861/+files/strongswan-kernel-libipsec.patch
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is
Hello Simon,
Yes I know the policy module. However I think on OpenVZ, strongswan is
unable to forward ipsec traffic to proper interface, which I believe it
is an upstream problem: https://wiki.strongswan.org/issues/592
Thanks,
TZ
--
You received this bug notification because you are a member
Hi Tony
On 09/18/2014 11:28 AM, Tony Zhou wrote:
However I think on OpenVZ, strongswan is unable to forward ipsec
traffic to proper interface, which I believe it is an upstream
problem: https://wiki.strongswan.org/issues/592
This is getting off-topic but I only ever tried to run IPsec in the
Hello Simon,
Yes I know the policy module. However I think on OpenVZ, strongswan is
unable to forward ipsec traffic to proper interface, which I believe it
is an upstream problem: https://wiki.strongswan.org/issues/592
Thanks,
TZ
--
You received this bug notification because you are a member
Hi Tony
On 09/18/2014 11:28 AM, Tony Zhou wrote:
However I think on OpenVZ, strongswan is unable to forward ipsec
traffic to proper interface, which I believe it is an upstream
problem: https://wiki.strongswan.org/issues/592
This is getting off-topic but I only ever tried to run IPsec in the
@ttzforj, I understand the need for a userspace implementation when
using OpenVZ (LXC too?) but for iptables, are you aware of the policy
module? I find it very useful and relatively easy to use:
# Allow only SSH when over IPsec
iptables -A INPUT -p tcp --dport 22 -m policy --dir in --pol
@ttzforj, I understand the need for a userspace implementation when
using OpenVZ (LXC too?) but for iptables, are you aware of the policy
module? I find it very useful and relatively easy to use:
# Allow only SSH when over IPsec
iptables -A INPUT -p tcp --dport 22 -m policy --dir in --pol
** Changed in: strongswan (Ubuntu)
Status: Confirmed = In Progress
** Changed in: strongswan (Ubuntu)
Importance: Undecided = Medium
** Changed in: strongswan (Ubuntu)
Assignee: (unassigned) = Jonathan Davies (jpds)
--
You received this bug notification because you are a member
** Changed in: strongswan (Ubuntu)
Status: Confirmed = In Progress
** Changed in: strongswan (Ubuntu)
Importance: Undecided = Medium
** Changed in: strongswan (Ubuntu)
Assignee: (unassigned) = Jonathan Davies (jpds)
--
You received this bug notification because you are a member
AFAICS, kernel-libipsec is not part of the Ubuntu strongSwan package,
hence it can't be enabled.
Not sure if there are that many uses cases for kernel-libipsec on a
standard Linux distribution to justify its inclusion; kernel-netlink is
preferable on 95% of use cases.
Regards
Martin
--
You
While debian/strongswan-plugin-kernel-libipsec.install lists
usr/lib/ipsec/plugins/libstrongswan-kernel-libipsec.so the strongswan-
plugin-kernel-libipsec package does not actually include that file.
The reason for this is how dh_install is called in debian/rules, due to
the
Hi Martin,
strongswan-plugin-kernel-libipsec does provide the plugin (or
supposedly) in Ubuntu 14.04.
There are two reasons (or at least mine) to use kernel-libipsec, one is
that kernel-libipsec provides a separate interface so that
filtering/inspecting the packets would be easier with iptables,
AFAICS, kernel-libipsec is not part of the Ubuntu strongSwan package,
hence it can't be enabled.
Not sure if there are that many uses cases for kernel-libipsec on a
standard Linux distribution to justify its inclusion; kernel-netlink is
preferable on 95% of use cases.
Regards
Martin
--
You
While debian/strongswan-plugin-kernel-libipsec.install lists
usr/lib/ipsec/plugins/libstrongswan-kernel-libipsec.so the strongswan-
plugin-kernel-libipsec package does not actually include that file.
The reason for this is how dh_install is called in debian/rules, due to
the
Hi Martin,
strongswan-plugin-kernel-libipsec does provide the plugin (or
supposedly) in Ubuntu 14.04.
There are two reasons (or at least mine) to use kernel-libipsec, one is
that kernel-libipsec provides a separate interface so that
filtering/inspecting the packets would be easier with iptables,
** Changed in: strongswan (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to strongswan in Ubuntu.
https://bugs.launchpad.net/bugs/1309594
Title:
kernel-libipsec not loading
To manage
Personally, I doubt if it is an upstream problem, since I previously
compiled the source code from strongswan.org and that can load kernel-
libipsec properly...
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to strongswan in Ubuntu.
** Changed in: strongswan (Ubuntu)
Status: New = Confirmed
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1309594
Title:
kernel-libipsec not loading
To manage notifications about this bug go
Personally, I doubt if it is an upstream problem, since I previously
compiled the source code from strongswan.org and that can load kernel-
libipsec properly...
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
Forwarded upstream: http://wiki.strongswan.org/issues/575
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to strongswan in Ubuntu.
https://bugs.launchpad.net/bugs/1309594
Title:
kernel-libipsec not loading
To manage notifications
Forwarded upstream: http://wiki.strongswan.org/issues/575
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1309594
Title:
kernel-libipsec not loading
To manage notifications about this bug go to:
30 matches
Mail list logo