When using the non-root use flag for strongswan (which is the standard way), the iptables commands called from the updown script fails. This is described here: http://wiki.strongswan.org/wiki/1/ReducedPrivileges The ebuild should notify the user about this, and tell them that they should look here, and maybe deploy some sort of sudo workaround if they need the leftfirewall option. Reproducible: Always Steps to Reproduce:
Actually both versions currently in portage try to get as much important information to the user as possible... and there is also a fair share about the downside of running strongswan w/o root privileges (including a link to the appropriate wiki page). So the information is indeed there. Please, if I am missing the point, just let me know. Or did you mean that those messages should be ewarn instead of einfo?
Hmm, seems like I have missed that, by bad. I discovered another bug - it tries to install ipsec.secrets, which does not exist, maybe a demo ipsec.secrets should be included?
