strongSwan Installation Documentation » History » Version 1

Version 1/59 - Next ยป - Current version
Martin Willi, 30.08.2007 23:27
created InstallationDocumentation page

= strongSwan Installation Documentation =

Autoconf Options

strongSwan can be built with the following '''./configure''' options:

where to put installation [''/usr/local'']. Most Linux distributions use ''"/usr"''.

program executables [''PREFIX/libexec'']

where to put configuration files [''PREFIX/etc'']. We strongly recommend ''"/etc"''.

enable support of Cisco VPN client [''no''].

enable DBUS configuration and control interface [''no'']. Requires libdbus.

build SIM authentication module for EAP [''no''].

enable OCSP and fetching of certificates and CRLs over HTTP [''no'']. Requires libcurl.

enable the integrity test of the crypto library [''no''].

enable fetching of CRLs from LDAP [''no'']. Requires OpenLDAP.

enable malloc hooks to find memory leaks [''no''].

enable NAT traversal with IPsec transport mode [''no''].

enable smartcard support [''no''].

build the UML test framework [''no''].

enable XML configuration and control interface [''no'']. Requires libxml.

disable the self-test of the crypto library [''no''].

disable the sending of the strongSwan vendor ID [''no''].

path for pluggable configuration backend modules [''IPSECDIR/plugins/backends'']

set the default PKCS11 library [''/usr/lib/'']

path for pluggable EAP modules [''IPSECDIR/plugins/eap'']

change group of the daemons to GID after startup [''0'']

path for pluggable control interface modules [''IPSECDIR/plugins/interfaces'']

installation path for ipsec tools [''LIBEXECDIR/ipsec'']

linux header files to be used [''../include'']

path for PID and UNIX socket files [''/var/run'']

set the device for true random data [''/dev/random'']

set the file to store DNS server information [''SYSCONFDIR/resolv.conf'']

routing table for IPsec source routes [''220'']

priority for IPsec routing table [''220'']

library containing the sim_run_alg() function for EAP-SIM []

change user of the daemons to UID after startup [''0'']

set the device for pseudo random data [''/dev/urandom'']

set the path to the XAUTH module []