在strongswan查看日志的时候,并没有找到在strongswan.conf中配置的日志文件,我的相应配置如下:
# strongswan.conf - strongSwan configuration file
#
# Refer to the strongswan.conf(5) manpage for details
#
# Configuration changes should be made in the included files
charon {
plugins {
include strongswan.d/charon/*.conf
}
filelog {
/var/log/strongswan.log {
time_format = %b %e %T
default = 4
append = no
flush_line = yes
}
}
}
include strongswan.d/*.conf
创建文件并对所有用户修改权限也没有用,查看/var/log/syslog文件在启动的时候报错:
报错如下(打开文件报错):
Apr 24 16:36:32 ubuntu kernel: [ 690.797791] audit: type=1400 audit(1524558992.560:41): apparmor="DENIED" operation="open" profile="/usr/lib/ipsec/charon"