Hi,
I found that setup of IPsec doesn't work correctly if you are using
/etc/rc.d/. While NetBSD has setkey in /sbin, FreeBSD has it in
/usr/sbin. However, the location is hardcoded in /etc/rc.d/ipsec.
Here is a patch.
It may be a time to consider to move setkey into /sbin as NetBSD did.
Sincerely,
--- etc/rc.d/ipsec.orig Fri Jun 14 17:30:58 2002
+++ etc/rc.d/ipsec Mon Jul 29 00:03:28 2002
@@ -45,7 +45,7 @@
ipsec_start()
{
echo "Installing ipsec manual keys/policies."
- /sbin/setkey -f $ipsec_file
+ setkey -f $ipsec_file
}
ipsec_stop()
@@ -56,16 +56,16 @@
# it is very questionable to do this during shutdown session, since
# it can hang any of remaining IPv4/v6 session.
#
- /sbin/setkey -F
- /sbin/setkey -FP
+ setkey -F
+ setkey -FP
}
ipsec_reload()
{
echo "Reloading ipsec manual keys/policies."
- /sbin/setkey -F
- /sbin/setkey -FP
- /sbin/setkey -f "$ipsec_file"
+ setkey -F
+ setkey -FP
+ setkey -f "$ipsec_file"
}
load_rc_config $name
--
Hajimu UMEMOTO @ Internet Mutual Aid Society Yokohama, Japan
[EMAIL PROTECTED] [EMAIL PROTECTED] ume@{,jp.}FreeBSD.org
http://www.imasy.org/~ume/
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-current" in the body of the message
