OpenSwan (IPSEC) on Fedora 13 with Snow Leopard as a client

I recently installed OpenSwan on my Fedora 13 machine. I want to use it to connect with Mac OS X with L2TP over IPSEC, unfortunately I am already stuck on the IPSEC-negotation part.

My server is running behind a NATted firewall so my external IP differs from the server’s IP. The server has a fixed IP on the network and the same is almost always valid for the clients (they are usually behind a NATted firewall).

I installed OpenSwan on Fedora 13 and have following configuration:

config setup
    protostack=netkey
    nat_traversal=yes
    virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
    oe=off
    nhelpers=0

conn L2TP-PSK-NAT
    rightsubnet=vhost:%priv
    also=L2TP-PSK-noNAT

conn L2TP-PSK-noNAT
    authby=secret
    pfs=no
    auto=add
    keyingtries=3
    rekey=no
    ikelifetime=8h
    keylife=1h
    type=transport
    left=my.servers.external.ip
    leftprotoport=17/1701
    right=%any
    rightprotoport=17/0

IPSEC starts fine and listens to UDP 500 and 4500. These two ports are opened in the firewall and are forwarded fine to the server.

In my /etc/ipsec.secrets file I have

my.servers.external.ip %any: "LongAndDifficultPassword"

And finally in my sysctl.conf (the redirect-entries are there because OpenSwan was strongly protesting about send/accept_redirects being active) I have

net.ipv4.ip_forward = 1
net.ipv4.conf.all.send_redirects = 0
net.ipv4.conf.all.accept_redirects = 0

Running “ipsec verify” gives me “all greens” (except Opportunistic Encryption Support, which is DISABLED), however, when trying to connect my Mac gives me following in the logs:

Nov  1 19:30:28 macbook pppd[4904]: pppd 2.4.2 (Apple version 412.3) started by user, uid 1011
Nov  1 19:30:28 macbook pppd[4904]: L2TP connecting to server 'my.servers.ip.address' (my.servers.ip.address)...
Nov  1 19:30:28 macbook pppd[4904]: IPSec connection started
Nov  1 19:30:28 macbook racoon[4905]: Connecting.
Nov  1 19:30:28 macbook racoon[4905]: IKE Packet: transmit success. (Initiator, Main-Mode message 1).
Nov  1 19:30:31 macbook racoon[4905]: IKE Packet: transmit success. (Phase1 Retransmit).
Nov  1 19:30:38: --- last message repeated 2 times ---
Nov  1 19:30:38 macbook pppd[4904]: IPSec connection failed

Any ideas at all?

Executando ./gitkraken no Fedora 29

Instalei o gitkraken no Federa seguindo o site oficail:
https://support.gitkraken.com/how-to-install
ao executar esta mostrando os seguintes resultados:

/opt/GitKraken/resources/app.asar.unpacked/node_modules/nodegit/build/Release/nodegit.node: symbol EVP_aes_128_ctr version OPENSSL_1.0.1 not defined in file libcrypto.so.1.0.0 with link time reference
    Error: /opt/GitKraken/resources/app.asar.unpacked/node_modules/nodegit/build/Release/nodegit.node: symbol EVP_aes_128_ctr version OPENSSL_1.0.1 not defined in file libcrypto.so.1.0.0 with link time reference
        at process.module.(anonymous function) [as dlopen] (ELECTRON_ASAR.js:166:20)
        at Object.Module._extensions..node (module.js:671:18)
        at Object.module.(anonymous function) [as .node] (ELECTRON_ASAR.js:180:18)
        at Module.load (module.js:561:32)
        at tryModuleLoad (module.js:504:12)
        at Function.Module._load (module.js:496:3)
        at Module.require (module.js:586:17)
        at require (internal/module.js:11:18)
        at Object. (/opt/GitKraken/resources/app.asar/node_modules/nodegit/dist/nodegit.js:12:12)
        at Object. (/opt/GitKraken/resources/app.asar/node_modules/nodegit/dist/nodegit.js:1145:3)

Fiz um ldd/gitkraken/gitkraken:

linux-vdso.so.1 (0x00007ffce95d8000)
    libnode.so => /opt/GitKraken/./libnode.so (0x00007f5f2a321000)
    libpthread.so.0 => /lib64/libpthread.so.0 (0x00007f5f2a2d9000)
    libgtk-3.so.0 => /lib64/libgtk-3.so.0 (0x00007f5f29b85000)
    libgdk-3.so.0 => /lib64/libgdk-3.so.0 (0x00007f5f29a86000)
    libpangocairo-1.0.so.0 => /lib64/libpangocairo-1.0.so.0 (0x00007f5f29a75000)
    libpango-1.0.so.0 => /lib64/libpango-1.0.so.0 (0x00007f5f29a2b000)
    libatk-1.0.so.0 => /lib64/libatk-1.0.so.0 (0x00007f5f29a00000)
    libcairo.so.2 => /lib64/libcairo.so.2 (0x00007f5f298dc000)
    libgdk_pixbuf-2.0.so.0 => /lib64/libgdk_pixbuf-2.0.so.0 (0x00007f5f298b0000)
    libgio-2.0.so.0 => /lib64/libgio-2.0.so.0 (0x00007f5f29708000)
    libgobject-2.0.so.0 => /lib64/libgobject-2.0.so.0 (0x00007f5f296b3000)
    libdbus-1.so.3 => /lib64/libdbus-1.so.3 (0x00007f5f2965d000)
    libX11-xcb.so.1 => /lib64/libX11-xcb.so.1 (0x00007f5f29656000)
    libxcb.so.1 => /lib64/libxcb.so.1 (0x00007f5f2962b000)
    libXi.so.6 => /lib64/libXi.so.6 (0x00007f5f29619000)
    libXcursor.so.1 => /lib64/libXcursor.so.1 (0x00007f5f2960c000)
    libXdamage.so.1 => /lib64/libXdamage.so.1 (0x00007f5f29607000)
    libXrandr.so.2 => /lib64/libXrandr.so.2 (0x00007f5f295fa000)
    libXcomposite.so.1 => /lib64/libXcomposite.so.1 (0x00007f5f295f3000)
    libXext.so.6 => /lib64/libXext.so.6 (0x00007f5f295de000)
    libXfixes.so.3 => /lib64/libXfixes.so.3 (0x00007f5f295d5000)
    libXrender.so.1 => /lib64/libXrender.so.1 (0x00007f5f295c8000)
    libX11.so.6 => /lib64/libX11.so.6 (0x00007f5f29483000)
    libXtst.so.6 => /lib64/libXtst.so.6 (0x00007f5f2947a000)
    libXss.so.1 => /lib64/libXss.so.1 (0x00007f5f29473000)
    libgconf-2.so.4 => /lib64/libgconf-2.so.4 (0x00007f5f2943e000)
    libgmodule-2.0.so.0 => /lib64/libgmodule-2.0.so.0 (0x00007f5f29438000)
    libglib-2.0.so.0 => /lib64/libglib-2.0.so.0 (0x00007f5f29319000)
    libnss3.so => /lib64/libnss3.so (0x00007f5f291e9000)
    libnssutil3.so => /lib64/libnssutil3.so (0x00007f5f291b5000)
    libsmime3.so => /lib64/libsmime3.so (0x00007f5f29189000)
    libnspr4.so => /lib64/libnspr4.so (0x00007f5f29147000)
    libffmpeg.so => /opt/GitKraken/./libffmpeg.so (0x00007f5f28ce1000)
    libasound.so.2 => /lib64/libasound.so.2 (0x00007f5f28bda000)
    libcups.so.2 => /lib64/libcups.so.2 (0x00007f5f28b40000)
    librt.so.1 => /lib64/librt.so.1 (0x00007f5f28b36000)
    libdl.so.2 => /lib64/libdl.so.2 (0x00007f5f28b2e000)
    libfontconfig.so.1 => /lib64/libfontconfig.so.1 (0x00007f5f28ae7000)
    libexpat.so.1 => /lib64/libexpat.so.1 (0x00007f5f28aaa000)
    libstdc++.so.6 => /lib64/libstdc++.so.6 (0x00007f5f28912000)
    libm.so.6 => /lib64/libm.so.6 (0x00007f5f2878e000)
    libgcc_s.so.1 => /lib64/libgcc_s.so.1 (0x00007f5f28773000)
    libc.so.6 => /lib64/libc.so.6 (0x00007f5f285ab000)
    /lib64/ld-linux-x86-64.so.2 (0x00007f5f2b5f9000)
    libcairo-gobject.so.2 => /lib64/libcairo-gobject.so.2 (0x00007f5f2859f000)
    libatk-bridge-2.0.so.0 => /lib64/libatk-bridge-2.0.so.0 (0x00007f5f28568000)
    libwayland-client.so.0 => /lib64/libwayland-client.so.0 (0x00007f5f28557000)
    libepoxy.so.0 => /lib64/libepoxy.so.0 (0x00007f5f28422000)
    libharfbuzz.so.0 => /lib64/libharfbuzz.so.0 (0x00007f5f2836d000)
    libpangoft2-1.0.so.0 => /lib64/libpangoft2-1.0.so.0 (0x00007f5f28351000)
    libfreetype.so.6 => /lib64/libfreetype.so.6 (0x00007f5f28293000)
    libXinerama.so.1 => /lib64/libXinerama.so.1 (0x00007f5f2828e000)
    libxkbcommon.so.0 => /lib64/libxkbcommon.so.0 (0x00007f5f2824b000)
    libwayland-cursor.so.0 => /lib64/libwayland-cursor.so.0 (0x00007f5f28241000)
    libwayland-egl.so.1 => /lib64/libwayland-egl.so.1 (0x00007f5f2823c000)
    libthai.so.0 => /lib64/libthai.so.0 (0x00007f5f2822e000)
    libfribidi.so.0 => /lib64/libfribidi.so.0 (0x00007f5f28210000)
    libpixman-1.so.0 => /lib64/libpixman-1.so.0 (0x00007f5f28169000)
    libpng16.so.16 => /lib64/libpng16.so.16 (0x00007f5f28133000)
    libxcb-shm.so.0 => /lib64/libxcb-shm.so.0 (0x00007f5f2812e000)
    libxcb-render.so.0 => /lib64/libxcb-render.so.0 (0x00007f5f2811c000)
    libz.so.1 => /lib64/libz.so.1 (0x00007f5f28102000)
    libpcre.so.1 => /lib64/libpcre.so.1 (0x00007f5f2808f000)
    libffi.so.6 => /lib64/libffi.so.6 (0x00007f5f28084000)
    libselinux.so.1 => /lib64/libselinux.so.1 (0x00007f5f28057000)
    libresolv.so.2 => /lib64/libresolv.so.2 (0x00007f5f2803d000)
    libmount.so.1 => /lib64/libmount.so.1 (0x00007f5f27fde000)
    libsystemd.so.0 => /lib64/libsystemd.so.0 (0x00007f5f27f37000)
    libXau.so.6 => /lib64/libXau.so.6 (0x00007f5f27f32000)
    libdbus-glib-1.so.2 => /lib64/libdbus-glib-1.so.2 (0x00007f5f27f02000)
    libplc4.so => /lib64/libplc4.so (0x00007f5f27efb000)
    libplds4.so => /lib64/libplds4.so (0x00007f5f27ef4000)
    libgssapi_krb5.so.2 => /lib64/libgssapi_krb5.so.2 (0x00007f5f27ea2000)
    libkrb5.so.3 => /lib64/libkrb5.so.3 (0x00007f5f27db2000)
    libk5crypto.so.3 => /lib64/libk5crypto.so.3 (0x00007f5f27d94000)
    libcom_err.so.2 => /lib64/libcom_err.so.2 (0x00007f5f27d8e000)
    libgnutls.so.30 => /lib64/libgnutls.so.30 (0x00007f5f27be0000)
    libavahi-common.so.3 => /lib64/libavahi-common.so.3 (0x00007f5f27bd1000)
    libavahi-client.so.3 => /lib64/libavahi-client.so.3 (0x00007f5f27bbd000)
    libcrypt.so.1 => /lib64/libcrypt.so.1 (0x00007f5f27b87000)
    libuuid.so.1 => /lib64/libuuid.so.1 (0x00007f5f27b7e000)
    libatspi.so.0 => /lib64/libatspi.so.0 (0x00007f5f27b46000)
    libgraphite2.so.3 => /lib64/libgraphite2.so.3 (0x00007f5f27b18000)
    libbz2.so.1 => /lib64/libbz2.so.1 (0x00007f5f27b05000)
    libdatrie.so.1 => /lib64/libdatrie.so.1 (0x00007f5f27afb000)
    libpcre2-8.so.0 => /lib64/libpcre2-8.so.0 (0x00007f5f27a76000)
    libblkid.so.1 => /lib64/libblkid.so.1 (0x00007f5f27a21000)
    liblzma.so.5 => /lib64/liblzma.so.5 (0x00007f5f279f8000)
    liblz4.so.1 => /lib64/liblz4.so.1 (0x00007f5f279d9000)
    libcap.so.2 => /lib64/libcap.so.2 (0x00007f5f279d2000)
    libgcrypt.so.20 => /lib64/libgcrypt.so.20 (0x00007f5f278b4000)
    libkrb5support.so.0 => /lib64/libkrb5support.so.0 (0x00007f5f278a2000)
    libcrypto.so.1.1 => /lib64/libcrypto.so.1.1 (0x00007f5f275c6000)
    libkeyutils.so.1 => /lib64/libkeyutils.so.1 (0x00007f5f275c0000)
    libp11-kit.so.0 => /lib64/libp11-kit.so.0 (0x00007f5f2748b000)
    libidn2.so.0 => /lib64/libidn2.so.0 (0x00007f5f2746c000)
    libunistring.so.2 => /lib64/libunistring.so.2 (0x00007f5f272e8000)
    libtasn1.so.6 => /lib64/libtasn1.so.6 (0x00007f5f272d3000)
    libnettle.so.6 => /lib64/libnettle.so.6 (0x00007f5f27296000)
    libhogweed.so.4 => /lib64/libhogweed.so.4 (0x00007f5f27266000)
    libgmp.so.10 => /lib64/libgmp.so.10 (0x00007f5f271e8000)
    libgpg-error.so.0 => /lib64/libgpg-error.so.0 (0x00007f5f271c6000)

Alguém Sabe me ajudar Por favor?

How to use DNF to find out package versions available in a different release of Fedora?

Is it possible to use dnf (or another utility) to search repositories of different releases of Fedora?

For instance to search my current release for all versions of a package I can do dnf --showduplicates list . Is it possible to do something along the lines of:

dnf --showduplicates list [--fedora29]

Where the argument [--fedora29] can be used to specify the version of Fedora that I would like to search?

If this is not possible to do using dnf is there a different command line tool that I can use?

Unable to install fedora or suse, but can install Ubuntu and solus [on hold]

So I recently got a HP 15-be016TU. This came pre-installed with freedos, which I immediately changed to Ubuntu.

After working with Ubuntu for a week, I planned to changed my distro to fedora. Since my system didn’t have Windows pre-installed, UEFI boot was disabled, but then I am not able to install fedora on my laptop.

Once Fedora didn’t work, I tried running Open suse which also didn’t work, but what worked was Solus OS

I verified with the bios that, the legacy boot was selected, instead of UEFI, and that selection is greyed out. However the boot type is legacy.

Issues:
So I am able to boot into Fedora and OpenSUSE and run through the install process and once that is done and I reboot there is a blank screen where even the bootloader is not installed.

While booting Fedora I get an option to boot from USB in legacy mode only but that gives me the said issue, but while booting Ubuntu from USB I get options to boot in legacy and UEFI mode

How to increase my `/` of Fedora installed on a virtual box?

I used virtualbox4 to create a box(8G disk) and installed a Fedora 16. Soon I found the space is not enough that I can’t download anything in ~/download.

I use VBoxManage to increase the disk size to 20G, but I still can’t download anything.

After some research(I’m newbie to linux), I realize that the increased disk has not been used. I tried to make / to use it, but failed. Because the result of some commands are not the same as my linux book.

df

cd /
df -h

prints:

[freewind@localhost /]$ df -h
Filesystem            Size  Used Avail Use% Mounted on
/dev/mapper/vg_fedora16-lv_root
                      3.6G  3.5G  7.7M 100% /
tmpfs                 565M  272K  565M   1% /dev/shm
/dev/sda1             485M   55M  405M  12% /boot
/dev/sr0               49M   49M     0 100% /media/VBOXADDITIONS_4.1.12_77245

fdisk

fdisk -l

prints(thanks to Mike):

[root@localhost ~]# fdisk -l

Disk /dev/sda: 21.5 GB, 21474836480 bytes
255 heads, 63 sectors/track, 2610 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x0007bb7a

   Device Boot      Start         End      Blocks   Id  System
/dev/sda1   *           1          64      512000   83  Linux
Partition 1 does not end on cylinder boundary.
/dev/sda2              64        1045     7875584   8e  Linux LVM

Disk /dev/mapper/vg_fedora16-lv_root: 3833 MB, 3833593856 bytes
255 heads, 63 sectors/track, 466 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x00000000

Disk /dev/mapper/vg_fedora16-lv_root doesn't contain a valid partition table

Disk /dev/mapper/vg_fedora16-lv_swap: 4227 MB, 4227858432 bytes
255 heads, 63 sectors/track, 514 cylinders
Units = cylinders of 16065 * 512 = 8225280 bytes
Sector size (logical/physical): 512 bytes / 512 bytes
I/O size (minimum/optimal): 512 bytes / 512 bytes
Disk identifier: 0x00000000

Disk /dev/mapper/vg_fedora16-lv_swap doesn't contain a valid partition table
[root@localhost ~]# 

I don’t know what can I do now. How to let / to use extra 12G space? If it’s hard, how can I create an extra partition and mount a new dir /mydev to it?

Unable to install fedora or suse, but can install Ubuntu and solus

So I recently got a HP 15-be016TU. This came pre-installed with freedos, which I immediately changed to Ubuntu.

After working with Ubuntu for a week, I planned to changed my distro to fedora. Since my system didn’t have Windows pre-installed, UEFI boot was disabled, but then I am not able to install fedora on my laptop.

Once Fedora didn’t work, I tried running Open suse which also didn’t work, but what worked was Solus OS

I verified with the bios that, the legacy boot was selected, instead of UEFI, and that selection is greyed out. However the boot type is legacy.

I’m not sure what exactly is the issue here. Any help is appreciated

How do I use custom-signed shim for secure boot (Fedora)?

I’m not sure whether there’s a guide for this but I’d like to know the detailed steps (step-by-step guide perhaps?) involved in achieving the following:

  1. Re-sign shim with a custom CA private key, but still let shim to use Fedora boot CA public key to verify the kernel components for Secure Boot.
  2. Replace Microsoft’s key stored in the firmware with the corresponding custom CA public key whose private key was used to sign shim.

The main goal that I want to achieve is to replace the built-in Microsoft’s CA certificate stored in the firmware, in order to forbid Microsoft-signed OS bootloaders from being executed, and still use the UEFI’s secure boot functionality to boot up F19. The general overview seems to be outlined in this link, but I’m not able to find any detailed guide to do this.

not able to run vm using VirtualBox on fedora 28 workstation

I have several problems with virtualbox on fedora 28 workstation. Problems are described below:

First at all, I tried to install virtualbox following to this tutorial:
https://www.if-not-true-then-false.com/2010/install-virtualbox-with-yum-on-fedora-centos-red-hat-rhel/

I got stuck at step 5: Install VirtualBox Latest Version 5.2

After command:

 dnf install VirtualBox-5.2

I got error: No match for argument: VirtualBox-5.2
Error: Unable to find a match.

I resolved this problem as described below:

I download rpm package from official site and install it with right clicking on it and choose open with software install

After successful installation I created vm with win10 64bit and tried to run it and then I get this:

enter image description here

Of course I run /sbin/vboxconfig in terminal as described in modal window but I got error : vboxdrv.sh: failed: modprobe vboxdrv failed. Please use ‘dmesg’ to find out why.

output from dmesg: (there are more ECPI errors)
enter image description here

After small research I found this article (https://gorka.eguileor.com/vbox-vmware-in-secureboot-linux-2016-update/), which looks like can solve my problem:

So I followed steps

I skipped first command because I already installed all required packages from this tutorial (virtualbox, gcc and kernel-devel)

Then I tried second command :

sudo akmods and get:
No akmod packages found, nothing to do. [ OK ]

After trying third command:

sudo modprobe -v vboxdrv

ERROR: could not insert ‘vboxdrv’: Operation not permitted

So I couldnt continue….

Questions:

  1. What should cause : No match for argument: VirtualBox-5.2
    Error: Unable to find a match.
    ???

2.How Could I solve errors produced by commands sudo akmods and sudo modprobe -v vboxdrv to get same result as in tutorial ?

3.I also encoutered to this Failed to synchronize cache for repo ‘virtualbox’, disabling. What does it mean ? and how could be solved ?

My virtualbox/kernel version is:

virtualbox – v5.2.20

fedora kernel version 4.18.14-200.fc28.x86_64.