Package Details: networkmanager-strongswan 1.4.1-1

Git Clone URL: https://aur.archlinux.org/networkmanager-strongswan.git (read-only)
Package Base: networkmanager-strongswan
Description: Strongswan NetworkManager plugin
Upstream URL: http://wiki.strongswan.org/projects/strongswan/wiki/NetworkManager
Keywords: VPN
Licenses: GPL
Conflicts: networkmanager-strongswan-passwordstore
Submitter: Brinox
Maintainer: Brinox
Last Packager: Brinox
Votes: 10
Popularity: 0.349210
First Submitted: 2015-09-10 10:19
Last Updated: 2017-01-13 10:53

Pinned Comments

Brinox commented on 2015-09-10 10:22

!!! IMPORTANT !!!
The strongswan package needs to be compiled with "--enable-nm" to enable NetworkManager support.

Latest Comments

Brinox commented on 2017-01-18 23:32

@leemeng0x61 Please refer to my comment from 2016-11-23 22:23

leemeng0x61 commented on 2017-01-18 01:36

==> ERROR: One or more PGP signatures could not be verified!
==> ERROR: Makepkg was unable to build networkmanager-strongswan.
==> Restart building networkmanager-strongswan ? [y/N]

fixed by:
> gpg --recv-keys 12538F8F689B5F1F15F07BE1765FE26C6B467584

nicolafel commented on 2016-12-28 13:00

--EDIT--
Please ignore the following, it was actually a much more simple issue with file and directory permission.
--/EDIT--

Hi all,
I’m having some trouble setting up a new VPN connections. Every time I set up my cert/key couple I get a dialogue asking for the key password. The problem is that keys that have been created, according to the [strongswan manual](https://wiki.strongswan.org/projects/strongswan/wiki/SimpleCA), with

ipsec pki --gen > peerKey.der

do not have a password. This, in turn, produces a series of errors when establishing the connection on the lines of

dic 28 13:40:23 $hostname charon-nm[1923]: 05[LIB] opening '$path_to_key' failed: Permission denied
dic 28 13:40:23 $hostname charon-nm[1923]: 05[LIB] building CRED_PRIVATE_KEY - RSA failed, tried 7 builders

If anyone has already a solution I’m more than happy to hear it, in the meanwhile I suggest to anyone with a working connection not to modify it.
All the best and many thanks to Brinox for making this package availabe :)

Stunts commented on 2016-12-05 22:35

@micsnare:
In order to make it work, you have to edit the PKGBUILD of the package "strongswan".
In line 79, replace:
--enable-bliss

with
--enable-bliss --enable-nm

Build the package, install it and you should be good to go.

micsnare commented on 2016-12-05 22:31

I seem to be having the same issue as Stunts...as I haven't added the --enable-nm option when installing Strongswan.

Where would I enable this when I compile this? Is this meant to go in the PKGBUILD at the beginning when installing the aur package?

Thanks a lot for your help!!

Brinox commented on 2016-11-23 22:23

Please see https://wiki.archlinux.org/index.php/makepkg#Signature_checking

kerjava commented on 2016-11-23 22:12

I seem to be getting a pgp signatures error its says
NetworkManager-strongswan-1.4.1.tar.bz2 .. Failed (unknown public key 765FE26C6B467584)

Any idea what is going one seems problematic

(noob fyi)

Brinox commented on 2016-11-15 23:00

It's very likely you forgot to compile Strongswan with --enable-nm :-)

Stunts commented on 2016-11-15 22:48

After installing this package I can configure a VPN in nm-settings using IKEv2!
However, when trying to activate it I get the following error:
nov 15 22:43:17 VoidCaster NetworkManager[518]: <warn> [1479249797.4126] vpn-connection[--SNIP--]: Could not launch the VPN service. error: Failed to execute child process "/usr/lib/strongswan/charon-nm" (No such file or directory).
Any hints on what could be wrong? Thanks in advance.

Brinox commented on 2016-09-27 16:25

The main strongswan package is responsible for installing this file, not the NetworkManager plugin package. If I would include this file in the package, this will lead to a conflict with the main package, when the new version including the necessary patches will be released.

Thus, I'm preferring to *not* include the policy file in the package. Please install strongswan-git or put the file there yourself, as long as the changes are not included in a release. Please remember to add the configuration option --enable-nm when compiling strongswan.

All comments