Description of problem: ipsec-tools package should provide init script to start / stop racoon daemon. Current Fedora ipsec-tools packages already provide the init script for racoon. This was previously notabugged in bug #136901 stating that initscripts's if{up,down}-ipsec are expected to start racoon daemon as needed. However, racoon may need to be restarted (not only reloaded) in some cases, for example during the installation of the updated packages. if{up,down}-ipsec only starts and reloads racoon, never stops it. Manual restart may cause racoon to run with incorrect context (bug #500395). Version-Release number of selected component (if applicable): # rpm -q ipsec-tools ipsec-tools-0.6.5-13.el5 Additional info: In the long term, if{up,down}-ipsec should probably get changed to call init scripts instead of running racoon directly.
We do not plan to resolve this issue in Red Hat Enterprise Linux 5 update release.