You are here: OpenWrt Wiki » Documentation » HOWTOs » IPsec Basics

Differences

This shows you the differences between two versions of the page.

--- doc:howto:vpn.ipsec.basics.racoon [2013/01/14 19:55]
birnenschnitzel
+++ doc:howto:vpn.ipsec.basics.racoon [2013/02/15 15:39] (current)
xenophonf Correct parsing of "ip route" output for IPv6 endpoints.
@@ Line 15: / Line 15: @@
   * kmod-ipsec: Basic security module (automatically installed with ipsec-tools in latest trunk)
   * kmod-ipsec4: IPv4 security module
+  * kmod-ipsec6: IPv6 security module
   * ip: Required to make scripting easier
   * openssl-util: Certificate handling
   * iptables-mod-nat-extra: For VPN networks with [[vpn.ipsec.overlappingsubnets.racoon|overlapping IP addresses]]
-  * djbdns-utils: for simpler name resolving than old "nslookup | awk" thing (may also be named djbdns-tools)
+  * ip6tables: IPv6 firewall support
-Altogehter those packages will eat up about 1,2 MB of your router's flash memory. The racoon and ip binaries will already be 650KB. Maybe it is time for an [[extroot]] installation?
+Altogether those packages will eat up about 1,2 MB of your router's flash memory. The racoon and ip binaries will already be 650KB. Maybe it is time for an [[extroot]] installation?
@@ Line 78: / Line 79: @@
 <code bash>
 #!/bin/sh /etc/rc.common
-#/etc/init.d/racoon - version 26
+#/etc/init.d/racoon - version 27
 NAME=racoon
@@ Line 124: / Line 125: @@
 CreateSA() {
-  local LocalEndpoint=`ip route get $3 | awk -F"src" '/src/{gsub(/ /,"");print $2}'`
+  local LocalEndpoint=`ip route get $3 | awk -F"src" '/src/{gsub(/ /,"");print $2}' | sed -e 's/metric.*//'`
   echo "spdadd $1 $2 any -P out ipsec \

doc/howto/vpn.ipsec.basics.racoon.1358189751.txt.bz2 · Last modified: 2013/01/14 19:55 by birnenschnitzel

OpenWrt

Wiki Search

Actions

Donate

Translations

Differences