The 'ipsec' script that comes with the freeswan package is installed in /etc/init.d verbatim. It is not converted to the Gentoo scripting style that is and thus it does not allow for the specification of dependencies. As a result, it is not possible to start ipsec as part of the normal boot process because the script might try to start the pluto daemon before the network has been initialized. Could someone maybe fix that?
Created attachment 10441 [details] init.d/ipsec script Note: This script requires the current ipsec script to be moved to /usr/lib/ipsec/ipsec_setup. ipsec_setup can then be seasoned to taste. I've tested this on my own system. It works for startup, unlike the other script which spews a bunch of eval output and doesn't actually appear to do anymore than start Pluto. Tested on 1.4 r3 w/ FreeS/WAN 1.98b
The old script gives me 2 problems... it seems not to start ipsec,, and it seems to have a problem shutting down on a thinclient on nfs, as the halt kills the tunnel violently, breaking the connection to the NFSRoot ... i'll check the new one out :)
Freeswan is no longer in portage. And the other *swan packages have script based on runscript.sh Closing.