Recommended update for FreeS/WAN
Knowledgebase
(Last modified: 17MAY2002)
solutions Recommended update for FreeS/WAN SuSE Linux Maintenance Web (33ee9cef7655ce79ca52f83958f46553)
SuSE Linux Enterprise Server 7 for IA32
SuSE Linux Connectivity Server
Package: freeswan
Architecture: i386
Release: 20020517
Obsoletes: none
connections/tunnels.
updated ipsec.o kernel module.
This could be worked around by setting a small MTU or by switching off Path MTU discovery on all the internal machines which is not a satisfactory solution.
The newer version of FreeS/WAN (1.95 with X.509 0.9.8) fixes this problem: The ICMP does find its way back now.
Note that the X.509 support has become much more mature in this version. Conversions of certificates to the binary format (DER) are not needed any more. X.509 distinguished names can be specified without the leading '@' now. The old syntax config files should still be accepted.
If you install this update, you also need the updated kernel (2.4.18) package which includes the right ipsec.o kernel module (created from the FreeS/WAN-1.95 sources).
Therefore before you install this update, please update your kernel and shutdown your IPsec connections (if you any IPsec connections configured) with
rcipsec stop
You will be able to use FreeS/WAN again after booting the new kernel.
rpm -Uvh freeswan.rpm
You will be able to use FreeS/WAN again after booting the new kernel.
Download Source Packages
Download the source code of the patches for maintained products.
Disclaimer
The Origin of this information may be internal or external to Novell. Novell makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Novell makes no explicit or implied claims to the validity of this information.
Any trademarks referenced in this document are the property of their respective owners. Consult your product manuals for complete trademark information.