set +o emacs
set +o emacs
openbsde #
 set +o vi
openbsde #
 set +o gmacs
openbsde #
 # note swan-prep does not yet support iked
openbsde #
 #/testing/guestbin/swan-prep
openbsde #
 cp openbsde.conf /etc/iked.conf
openbsde #
 chmod 600 /etc/iked.conf
openbsde #
 /sbin/iked -dvvv > /tmp/iked.log 2>&1 &
[x] PID
openbsde #
 echo "initdone"
initdone
openbsde #
 cp /tmp/iked.log OUTPUT/openbsde.iked.log
openbsde #
 ipsecctl -s all | sort
FLOWS:
SAD:
esp tunnel from 192.1.2.23 to 192.1.2.45 spi 0xSPISPI auth hmac-sha2-256 enc aes-256
esp tunnel from 192.1.2.45 to 192.1.2.23 spi 0xSPISPI auth hmac-sha2-256 enc aes-256
flow esp in from 192.0.1.0/24 to 192.0.2.0/24 peer 192.1.2.45 srcid FQDN/east dstid FQDN/west type require
flow esp out from 192.0.2.0/24 to 192.0.1.0/24 peer 192.1.2.45 srcid FQDN/east dstid FQDN/west type require
openbsde #
 
