From: Arne Fitzenreiter <arne_f@ipfire.org>
Date: Fri, 14 May 2010 14:55:13 +0000 (+0200)
Subject: Convert ipsec.conf for strongswan at core38 updater.
X-Git-Tag: v2.9-beta1~311
X-Git-Url: http://git.ipfire.org/?p=people%2Fpmueller%2Fipfire-2.x.git;a=commitdiff_plain;h=e3c5d22a6f1c8b4e1443550f0480a0208bb3ed42

Convert ipsec.conf for strongswan at core38 updater.
---

diff --git a/config/rootfiles/core/38/update.sh b/config/rootfiles/core/38/update.sh
index d15b829d16..cc424b52c4 100644
--- a/config/rootfiles/core/38/update.sh
+++ b/config/rootfiles/core/38/update.sh
@@ -175,7 +175,18 @@ if [ -e /var/ipfire/qos/enable ]; then
 fi
 #
 #
-# Todo convert ipsec.conf from open to strongswan...
+# convert ipsec.conf from openswan to strongswan...
+mv /var/ipfire/vpn/ipsec.conf /var/ipfire/vpn/ipsec.conf.org
+cat /var/ipfire/vpn/ipsec.conf.org | \
+grep -v "disablearrivalcheck=" | \
+grep -v "leftfirewall=" | \
+grep -v "charonstart=" | \
+grep -v "aggrmode=" > /var/ipfire/vpn/ipsec.conf
+sed -i "s|ipsec[0-9]=||g" /var/ipfire/vpn/ipsec.conf
+sed -i "s|^conn [A-Za-z].*$|&\n\tleftfirewall=yes|g" /var/ipfire/vpn/ipsec.conf
+sed -i "s|^config setup$|&\n\tcharonstart=no|g" /var/ipfire/vpn/ipsec.conf
+chown nobody:nobody /var/ipfire/vpn/ipsec.conf
+chmod 644 /var/ipfire/vpn/ipsec.conf
 #
 #
 # Start Sevices