mirror of
https://github.com/strongswan/strongswan.git
synced 2025-10-06 00:00:47 -04:00
4aa24d4c13
RFC 7427 signature authentication is now used between strongSwan hosts by default, which causes the actual signature schemes to get logged.
18 lines
1.4 KiB
Plaintext
18 lines
1.4 KiB
Plaintext
moon:: cat /var/log/daemon.log::authentication of 'carol@strongswan.org' with pre-shared key successful::YES
|
|
moon:: cat /var/log/daemon.log::authentication of 'dave@strongswan.org' with pre-shared key successful::YES
|
|
moon:: cat /var/log/daemon.log::authentication of 'moon.strongswan.org' (myself) with RSA.* successful::YES
|
|
carol::ipsec status 2> /dev/null::home.*ESTABLISHED.*carol@strongswan.org.*moon.strongswan.org::YES
|
|
dave:: ipsec status 2> /dev/null::home.*ESTABLISHED.*dave@strongswan.org.*moon.strongswan.org::YES
|
|
moon:: ipsec status 2> /dev/null::rw\[1]: ESTABLISHED.*moon.strongswan.org.*carol@strongswan.org::YES
|
|
moon:: ipsec status 2> /dev/null::rw\[2]: ESTABLISHED.*moon.strongswan.org.*dave@strongswan.org::YES
|
|
carol::ipsec status 2> /dev/null::home.*INSTALLED, TUNNEL::YES
|
|
dave:: ipsec status 2> /dev/null::home.*INSTALLED, TUNNEL::YES
|
|
moon:: ipsec status 2> /dev/null::rw[{]1}.*INSTALLED, TUNNEL::YES
|
|
moon:: ipsec status 2> /dev/null::rw[{]2}.*INSTALLED, TUNNEL::YES
|
|
carol::ping -c 1 PH_IP_ALICE::64 bytes from PH_IP_ALICE: icmp_req=1::YES
|
|
dave:: ping -c 1 PH_IP_ALICE::64 bytes from PH_IP_ALICE: icmp_req=1::YES
|
|
moon::tcpdump::IP carol.strongswan.org > moon.strongswan.org: ESP::YES
|
|
moon::tcpdump::IP moon.strongswan.org > carol.strongswan.org: ESP::YES
|
|
moon::tcpdump::IP dave.strongswan.org > moon.strongswan.org: ESP::YES
|
|
moon::tcpdump::IP moon.strongswan.org > dave.strongswan.org: ESP::YES
|