OpenSWAN sends many error-level logs on restart which are not actually errors
Environment
- Red Hat Enterprise Linux 6
- openswan
- libreswan
Issue
- OpenSWAN sends many error-level logs on restart which are not actually errors.
Sep 30 17:16:39 left ipsec__plutorun: /usr/libexec/ipsec/addconn Non-fips mode set in /proc/sys/crypto/fips_enabled
Resolution
- openswan is being obsoleted by libreswan. Red Hat has added libreswan to RHEL6 extras. So now openswan is in maintenance
mode and Red Hat is only planning to do another release for urgent/critical bugs. - Note that such issue has already been addressed in libreswan and Red Hat would like to encourage the customer to try out libreswan from RHEL6 extras.
A) The technologies delivered in the Extras channel are fully supported.
B) Libreswan is a fork of the Openswan application and examples in documentation should be interchangeable.
C) Errata Link of libreswan released.
This solution is part of Red Hat’s fast-track publication program, providing a huge library of solutions that Red Hat engineers have created while supporting our customers. To give you the knowledge you need the instant it becomes available, these articles may be presented in a raw and unedited form.
Comments