With these it's possible to actually have it report a start failure of racoon. Index: files/racoon.init.d =================================================================== RCS file: /var/cvsroot/gentoo-x86/net-firewall/ipsec-tools/files/racoon.init.d,v retrieving revision 1.5 diff -u -B -r1.5 racoon.init.d --- files/racoon.init.d 21 Apr 2007 12:24:23 -0000 1.5 +++ files/racoon.init.d 16 Sep 2012 04:35:21 -0000 @@ -33,22 +33,20 @@ fi } -start() { +command=/usr/sbin/racoon +command_args="-f ${RACOON_CONF} ${RACOON_OPTS}" +pidfile=/var/run/racoon.pid + +start_pre() { checkconfig || return 1 einfo "Loading ipsec policies from ${SETKEY_CONF}." /usr/sbin/setkey -f ${SETKEY_CONF} if [ $? -eq 1 ] ; then eerror "Error while loading ipsec policies" fi - ebegin "Starting racoon" - start-stop-daemon -S -x /usr/sbin/racoon -- -f ${RACOON_CONF} ${RACOON_OPTS} - eend $? } -stop() { - ebegin "Stopping racoon" - start-stop-daemon -K -p /var/run/racoon.pid - eend $? +stop_post() { if [ -n "${RACOON_RESET_TABLES}" ]; then ebegin "Flushing policy entries" /usr/sbin/setkey -F
Okay I added this with ipsec-tools-0.8.0-r4 (rev bumped from -r3 which is currently stable). Reopen if there is still some issue. I'll stabilize in a month and push the change down to the users.
There's a problem, see bug #435398.