ipsec_tools will not compile after IPSEC_NAT_T patch

VANHULLEBUS Yvan vanhu_bsd at zeninc.net
Mon Jan 7 03:14:38 PST 2008 

On Sat, Jan 05, 2008 at 04:55:21PM -0500, Lyle Scott III wrote:
> I applied the IPSEC_NAT_T patch from
> http://vanhu.free.fr/FreeBSD/patch-natt-freebsd6-2007-05-31.diff to FreeBSD
> 6.2-release-p9
> yesterday to include IPSEC_NAT_T support.
> i did a  make buildworld buildkernel && make installworld installkernel &&
> shutdown -r now

Hi.

To answer your previous mail, you'll need to add IPSEC_NAT_T option to
your configuration file, or kernel will be compiled without NAT-T
support.


> Now when i recompile /usr/ports/security/ipsec-tools it passes the test for
> checking if the nat_t patch is installed but the port fails in make.  I did
> some research and noticed the same function it errors at is in the patch.

Do you have the configure's output for this test ?



> Did i mess something up or what?  I'm not sure where to go from here.
> Should i just delete /usr/src/* and extract a new src and start over?
> 
> cc -DHAVE_CONFIG_H -I. -I../.. -I./../libipsec
> -I./../../src/racoon/missing -D_GNU_SOURCE
> -DSYSCONFDIR=\"/usr/local/etc/racoon\"  -DADMINPORTDIR=\"/var/db/racoon\"
> -pipe -g  -Wall -Werror -Wno-unused -MT isakmp.o -MD -MP -MF
> .deps/isakmp.Tpo -c -o isakmp.o isakmp.c
> isakmp.c: In function `isakmp_open':
> isakmp.c:1750: error: `UDP_ENCAP_ESPINUDP' undeclared (first use in this
> function)
> isakmp.c:1750: error: (Each undeclared identifier is reported only once
> isakmp.c:1750: error: for each function it appears in.)
> isakmp.c:1753: error: `UDP_ENCAP_ESPINUDP_NON_IKE' undeclared (first use in
> this function)
> isakmp.c:1757: error: `UDP_ENCAP' undeclared (first use in this function)
> *** Error code 1

Those defines are in netinet/udp.h
Please check if they are in your /usr/include/netinet/udp.h
If you find them there, that means your problem comes from your
shell's environment (check SYSDIR, etc...).
If you don't find those defines in /usr/include/netinet/udp.h, check
in /usr/src/sys/netinet/udp.h
If you find them, that means you had a problem while installing world,
if you didn't find them, that means you had a problem while applying
the patch.



Yvan.

-- 
NETASQ
http://www.netasq.com

More information about the freebsd-net mailing list