sharpetronics/strongswan
1
0
Fork 0
mirror of https://github.com/strongswan/strongswan.git synced 2025-10-06 00:00:47 -04:00
Code Issues Projects Releases Wiki Activity
strongswan/testing/tests/swanctl/rw-cert-qske/description.txt
Andreas Steffen 5bbc92fa6c testing: Added swanctl/rw-cert-qske scenario
2020-12-07 13:32:56 +01:00

11 lines
641 B
Plaintext
Executable File
Raw Blame History

The roadwarriors <b>carol</b> and <b>dave</b> set up a connection each
to gateway <b>moon</b>. The authentication is based on <b>X.509 certificates</b>.
<b>carol</b> proposes CURVE_25519 for the key exchange and KE_FRODO_SHAKE_L5 for
the additional key exchange whereas <b>dave</b> proposes MODP_3072 and KE_FRODO_AES_L3,
respectively.
<p/>
Upon the successful establishment of the IPsec tunnels, the updown script
automatically inserts iptables-based firewall rules that let pass the tunneled traffic.
In order to test both tunnel and firewall, both <b>carol</b> and <b>dave</b> ping
the client <b>alice</b> behind the gateway <b>moon</b>.
Reference in New Issue View Git Blame Copy Permalink