File: description.txt

package info (click to toggle)

libreswan 5.2-2.3

links: PTS, VCS
area: main
in suites: sid
size: 81,644 kB
sloc: ansic: 129,988; sh: 32,018; xml: 20,646; python: 10,303; makefile: 3,022; javascript: 1,506; sed: 574; yacc: 511; perl: 264; awk: 52

file content (12 lines) | stat: -rw-r--r-- 565 bytes

parent folder | download | duplicates (4)

Basic pluto test (now using XFRM/NETKEY)

"westnet-eastnet": 192.0.1.0/24===192.1.2.45[@west]...192.1.2.23[@east]===192.0.2.0/24

1) west 192.1.2.45 pings east-in/east-eth0/east 192.0.2.254 on eastnet 192.0.2.0/24
2) west adds an iptable rule to block plaintext from eastnet
3) west pings 192.0.2.254 again, but pong should be dropped by rule
4) west initiates connection "westnet-eastnet"; east 192.1.2.23 responds
5) confirm with ping

It also tests the obsolete PF_KEY API kernel module (af_key.ko) is not loaded,
by testing that /proc/net/pfkey does not exist.