HIPL compiles fine on OpenWrt trunk and Backfire branch versions from the end of 2010 onwards.
To get an OpenWrt tree suitable for compiling HIPL, perform the following steps:
Get the OpenWrt backfire release branch:
$ svn checkout svn://svn.openwrt.org/openwrt/branches/backfire
or get the OpenWrt trunk development version:
$ svn checkout svn://svn.openwrt.org/openwrt/trunk
Enable package feeds in OpenWrt to get required dependencies for the HIPL firewall:
$ scripts/feeds update -a
$ scripts/feeds install -a
Make sure you have the requirements to compile OpenWrt installed on your system. Details can be found in the OpenWrt documentation.
To modify your OpenWrt tree to contain HIPL you need to
Build a dist tarball of HIPL in your HIPL tree:
$ make dist
Add the OpenWrt packaging infrastructure for HIPL into the OpenWrt tree:
$ cp -r /path/to/hipl/packaging/openwrt/hipl/ /path/to/openwrt/package/
Create the OpenWrt download directory in case it does not exist yet and copy the HIPL dist tarball into it:
$ mkdir -p /path/to/openwrt/dl/
$ cp /path/to/hipl/hipl-*.tar.gz /path/to/openwrt/dl/
Configure OpenWrt according to your needs, but make sure
you select a Linux 2.6 target, otherwise IPsec will not be
available and neither will HIPL. Enable both or either of
hipl-hipd and hipl-hipfw
in the Network section of the menu.
Then compile.
$ make menuconfig
$ make
The OpenWrt build process takes a long time. If you just want to test HIPL compilation within OpenWrt quickly without triggering a complete build, run
$ make package/hipl/install
If you experience problems during compilation, add V=99 to the make command in order to get more detailed output.