File: description.txt

package info (click to toggle)

libreswan 4.3-1%2Bdeb11u4

links: PTS, VCS
area: main
in suites: bullseye
size: 62,688 kB
sloc: ansic: 108,293; sh: 25,973; xml: 11,756; python: 10,230; makefile: 1,580; javascript: 1,353; yacc: 825; sed: 647; perl: 584; lex: 159; awk: 156

file content (12 lines) | stat: -rw-r--r-- 565 bytes

parent folder | download | duplicates (4)

Basic pluto test (now using XFRM/NETKEY)

"westnet-eastnet": 192.0.1.0/24===192.1.2.45[@west]...192.1.2.23[@east]===192.0.2.0/24

1) west 192.1.2.45 pings east-in/east-eth0/east 192.0.2.254 on eastnet 192.0.2.0/24
2) west adds an iptable rule to block plaintext from eastnet
3) west pings 192.0.2.254 again, but pong should be dropped by rule
4) west initiates connection "westnet-eastnet"; east 192.1.2.23 responds
5) confirm with ping

It also tests the obsolete PF_KEY API kernel module (af_key.ko) is not loaded,
by testing that /proc/net/pfkey does not exist.