testing: Use renamed systemd unit
While the alias is available after enabling the unit, we don't actually do that in our testing environment (adding a symlink manually would work too, then again, why not just use the proper name?).
This commit is contained in:
parent
1815c1de52
commit
35392aa869
|
@ -2,12 +2,12 @@
|
||||||
#
|
#
|
||||||
# LEAK_DETECTIVE_LOG is set for automated runs, however, this is not passed
|
# LEAK_DETECTIVE_LOG is set for automated runs, however, this is not passed
|
||||||
# to a process started via systemctl. This wrapper is used to set the variable
|
# to a process started via systemctl. This wrapper is used to set the variable
|
||||||
# for the strongswan-swanctl.service unit.
|
# for the strongswan.service unit.
|
||||||
|
|
||||||
ORIG=/bin/systemctl
|
ORIG=/bin/systemctl
|
||||||
CONF=/lib/systemd/system/strongswan-swanctl.service
|
CONF=/lib/systemd/system/strongswan.service
|
||||||
|
|
||||||
if [[ "$2" != "strongswan-swanctl" ]]; then
|
if [[ "$2" != "strongswan" ]]; then
|
||||||
$ORIG "$@"
|
$ORIG "$@"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
moon::expect-connection net
|
moon::expect-connection net
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection net
|
moon::expect-connection net
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::rm /etc/swanctl/pkcs8/*
|
moon::rm /etc/swanctl/pkcs8/*
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::rm /etc/swanctl/rsa/moonKey.pem
|
||||||
sun::rm /etc/swanctl/rsa/sunKey.pem
|
sun::rm /etc/swanctl/rsa/sunKey.pem
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
sun::iptables-restore < /etc/iptables.rules
|
sun::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::rm /etc/swanctl/pkcs12/moonCert.p12
|
moon::rm /etc/swanctl/pkcs12/moonCert.p12
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::cd /etc/swanctl; rm rsa/moonKey.pem x509/moonCert.pem x509ca/strongswanCer
|
||||||
sun::cd /etc/swanctl; rm rsa/sunKey.pem x509/sunCert.pem x509ca/strongswanCert.pem
|
sun::cd /etc/swanctl; rm rsa/sunKey.pem x509/sunCert.pem x509ca/strongswanCert.pem
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
sun::iptables-restore < /etc/iptables.rules
|
sun::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
sun::iptables-restore < /etc/iptables.rules
|
sun::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,2 +1,2 @@
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
|
@ -1,2 +1,2 @@
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
moon::expect-connection net
|
moon::expect-connection net
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection net
|
moon::expect-connection net
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::ip6tables-restore < /etc/ip6tables.flush
|
moon::ip6tables-restore < /etc/ip6tables.flush
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::iptables-restore < /etc/iptables.drop
|
||||||
sun::iptables-restore < /etc/iptables.drop
|
sun::iptables-restore < /etc/iptables.drop
|
||||||
moon::ip6tables-restore < /etc/ip6tables.rules
|
moon::ip6tables-restore < /etc/ip6tables.rules
|
||||||
sun::ip6tables-restore < /etc/ip6tables.rules
|
sun::ip6tables-restore < /etc/ip6tables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
sun::expect-connection host-host
|
sun::expect-connection host-host
|
||||||
moon::expect-connection host-host
|
moon::expect-connection host-host
|
||||||
moon::swanctl --initiate --child host-host 2> /dev/null
|
moon::swanctl --initiate --child host-host 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::ip6tables-restore < /etc/ip6tables.flush
|
moon::ip6tables-restore < /etc/ip6tables.flush
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::iptables-restore < /etc/iptables.drop
|
||||||
sun::iptables-restore < /etc/iptables.drop
|
sun::iptables-restore < /etc/iptables.drop
|
||||||
moon::ip6tables-restore < /etc/ip6tables.rules
|
moon::ip6tables-restore < /etc/ip6tables.rules
|
||||||
sun::ip6tables-restore < /etc/ip6tables.rules
|
sun::ip6tables-restore < /etc/ip6tables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection host-host
|
moon::expect-connection host-host
|
||||||
sun::expect-connection host-host
|
sun::expect-connection host-host
|
||||||
moon::swanctl --initiate --child host-host 2> /dev/null
|
moon::swanctl --initiate --child host-host 2> /dev/null
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
||||||
|
|
|
@ -6,8 +6,8 @@ alice::"ip route add fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection net-net
|
moon::expect-connection net-net
|
||||||
sun::expect-connection net-net
|
sun::expect-connection net-net
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
||||||
|
|
|
@ -6,8 +6,8 @@ alice::"ip route add fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection net-net
|
moon::expect-connection net-net
|
||||||
sun::expect-connection net-net
|
sun::expect-connection net-net
|
||||||
moon::swanctl --initiate --child net-net
|
moon::swanctl --initiate --child net-net
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::ip6tables-restore < /etc/ip6tables.flush
|
moon::ip6tables-restore < /etc/ip6tables.flush
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::iptables-restore < /etc/iptables.drop
|
||||||
sun::iptables-restore < /etc/iptables.drop
|
sun::iptables-restore < /etc/iptables.drop
|
||||||
moon::ip6tables-restore < /etc/ip6tables.rules
|
moon::ip6tables-restore < /etc/ip6tables.rules
|
||||||
sun::ip6tables-restore < /etc/ip6tables.rules
|
sun::ip6tables-restore < /etc/ip6tables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection net-net
|
moon::expect-connection net-net
|
||||||
sun::expect-connection net-net
|
sun::expect-connection net-net
|
||||||
moon::swanctl --initiate --child net-net
|
moon::swanctl --initiate --child net-net
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::ip6tables-restore < /etc/ip6tables.flush
|
moon::ip6tables-restore < /etc/ip6tables.flush
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::iptables-restore < /etc/iptables.drop
|
||||||
sun::iptables-restore < /etc/iptables.drop
|
sun::iptables-restore < /etc/iptables.drop
|
||||||
moon::ip6tables-restore < /etc/ip6tables.rules
|
moon::ip6tables-restore < /etc/ip6tables.rules
|
||||||
sun::ip6tables-restore < /etc/ip6tables.rules
|
sun::ip6tables-restore < /etc/ip6tables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection net-net
|
moon::expect-connection net-net
|
||||||
sun::expect-connection net-net
|
sun::expect-connection net-net
|
||||||
moon::swanctl --initiate --child net-net
|
moon::swanctl --initiate --child net-net
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
||||||
|
|
|
@ -6,8 +6,8 @@ alice::"ip route add fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection net-net
|
moon::expect-connection net-net
|
||||||
sun::expect-connection net-net
|
sun::expect-connection net-net
|
||||||
moon::swanctl --initiate --child net-net
|
moon::swanctl --initiate --child net-net
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
||||||
|
|
|
@ -6,8 +6,8 @@ alice::"ip route add fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection net-net
|
moon::expect-connection net-net
|
||||||
sun::expect-connection net-net
|
sun::expect-connection net-net
|
||||||
moon::swanctl --initiate --child net-net
|
moon::swanctl --initiate --child net-net
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
||||||
|
|
|
@ -6,8 +6,8 @@ alice::"ip route add fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection net-net
|
moon::expect-connection net-net
|
||||||
sun::expect-connection net-net
|
sun::expect-connection net-net
|
||||||
moon::swanctl --initiate --child net-net
|
moon::swanctl --initiate --child net-net
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
moon::ip6tables-restore < /etc/ip6tables.flush
|
moon::ip6tables-restore < /etc/ip6tables.flush
|
||||||
|
|
|
@ -6,8 +6,8 @@ carol::ip6tables-restore < /etc/ip6tables.rules
|
||||||
moon::ip6tables -I OUTPUT 1 -o eth1 -p icmpv6 --icmpv6-type 2 -j ACCEPT
|
moon::ip6tables -I OUTPUT 1 -o eth1 -p icmpv6 --icmpv6-type 2 -j ACCEPT
|
||||||
alice::"ip route add fec0:\:/16 via fec1:\:1"
|
alice::"ip route add fec0:\:/16 via fec1:\:1"
|
||||||
carol::"ip route add fec1:\:/16 via fec0:\:1"
|
carol::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home
|
carol::swanctl --initiate --child home
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -7,9 +7,9 @@ dave::ip6tables-restore < /etc/ip6tables.rules
|
||||||
alice::"ip route add fec0:\:/16 via fec1:\:1"
|
alice::"ip route add fec0:\:/16 via fec1:\:1"
|
||||||
carol::"ip route add fec1:\:/16 via fec0:\:1"
|
carol::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
dave::"ip route add fec1:\:/16 via fec0:\:1"
|
dave::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
dave::expect-connection home
|
dave::expect-connection home
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -7,9 +7,9 @@ dave::ip6tables-restore < /etc/ip6tables.rules
|
||||||
alice::"ip route add fec0:\:/16 via fec1:\:1"
|
alice::"ip route add fec0:\:/16 via fec1:\:1"
|
||||||
carol::"ip route add fec1:\:/16 via fec0:\:1"
|
carol::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
dave::"ip route add fec1:\:/16 via fec0:\:1"
|
dave::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
dave::expect-connection home
|
dave::expect-connection home
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -5,9 +5,9 @@ moon::ip6tables-restore < /etc/ip6tables.rules
|
||||||
carol::ip6tables-restore < /etc/ip6tables.rules
|
carol::ip6tables-restore < /etc/ip6tables.rules
|
||||||
dave::ip6tables-restore < /etc/ip6tables.rules
|
dave::ip6tables-restore < /etc/ip6tables.rules
|
||||||
alice::"ip route add fec3:\:/16 via fec1:\:1"
|
alice::"ip route add fec3:\:/16 via fec1:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
dave::expect-connection home
|
dave::expect-connection home
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -5,9 +5,9 @@ moon::ip6tables-restore < /etc/ip6tables.rules
|
||||||
carol::ip6tables-restore < /etc/ip6tables.rules
|
carol::ip6tables-restore < /etc/ip6tables.rules
|
||||||
dave::ip6tables-restore < /etc/ip6tables.rules
|
dave::ip6tables-restore < /etc/ip6tables.rules
|
||||||
alice::"ip route add fec3:\:/16 via fec1:\:1"
|
alice::"ip route add fec3:\:/16 via fec1:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
dave::expect-connection home
|
dave::expect-connection home
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -10,9 +10,9 @@ dave::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
moon::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
moon::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
||||||
carol::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
carol::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
||||||
dave::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
dave::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
dave::expect-connection home
|
dave::expect-connection home
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -10,9 +10,9 @@ dave::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
moon::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
moon::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
||||||
carol::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
carol::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
||||||
dave::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
dave::cd /etc/swanctl; rm rsa/* x509/* x509ca/*
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
dave::expect-connection home
|
dave::expect-connection home
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -7,9 +7,9 @@ dave::ip6tables-restore < /etc/ip6tables.rules
|
||||||
alice::"ip route add fec0:\:/16 via fec1:\:1"
|
alice::"ip route add fec0:\:/16 via fec1:\:1"
|
||||||
carol::"ip route add fec1:\:/16 via fec0:\:1"
|
carol::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
dave::"ip route add fec1:\:/16 via fec0:\:1"
|
dave::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
dave::expect-connection home
|
dave::expect-connection home
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::ip6tables-restore < /etc/ip6tables.flush
|
moon::ip6tables-restore < /etc/ip6tables.flush
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::iptables-restore < /etc/iptables.drop
|
||||||
sun::iptables-restore < /etc/iptables.drop
|
sun::iptables-restore < /etc/iptables.drop
|
||||||
moon::ip6tables-restore < /etc/ip6tables.rules
|
moon::ip6tables-restore < /etc/ip6tables.rules
|
||||||
sun::ip6tables-restore < /etc/ip6tables.rules
|
sun::ip6tables-restore < /etc/ip6tables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection host-host
|
moon::expect-connection host-host
|
||||||
sun::expect-connection host-host
|
sun::expect-connection host-host
|
||||||
moon::swanctl --initiate --child host-host 2> /dev/null
|
moon::swanctl --initiate --child host-host 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::ip6tables-restore < /etc/ip6tables.flush
|
moon::ip6tables-restore < /etc/ip6tables.flush
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::iptables-restore < /etc/iptables.drop
|
||||||
sun::iptables-restore < /etc/iptables.drop
|
sun::iptables-restore < /etc/iptables.drop
|
||||||
moon::ip6tables-restore < /etc/ip6tables.rules
|
moon::ip6tables-restore < /etc/ip6tables.rules
|
||||||
sun::ip6tables-restore < /etc/ip6tables.rules
|
sun::ip6tables-restore < /etc/ip6tables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection host-host
|
moon::expect-connection host-host
|
||||||
sun::expect-connection host-host
|
sun::expect-connection host-host
|
||||||
moon::swanctl --initiate --child host-host
|
moon::swanctl --initiate --child host-host
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::swanctl --terminate --ike host-host 2> /dev/null
|
moon::swanctl --terminate --ike host-host 2> /dev/null
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::sysctl --pattern net.ipv4.conf.all.rp_filter --system
|
moon::sysctl --pattern net.ipv4.conf.all.rp_filter --system
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::sysctl -w net.ipv4.conf.all.rp_filter=2
|
||||||
sun::sysctl -w net.ipv4.conf.all.rp_filter=2
|
sun::sysctl -w net.ipv4.conf.all.rp_filter=2
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
sun::iptables-restore < /etc/iptables.rules
|
sun::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
sun::expect-connection host-host
|
sun::expect-connection host-host
|
||||||
moon::expect-connection host-host
|
moon::expect-connection host-host
|
||||||
moon::swanctl --initiate --child host-host 2> /dev/null
|
moon::swanctl --initiate --child host-host 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
sun::iptables-restore < /etc/iptables.rules
|
sun::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
alice::"ip route del fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
moon::"ip route del fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
sun::"ip route del fec1:\:/16 via fec0:\:1"
|
||||||
|
|
|
@ -4,8 +4,8 @@ alice::"ip route add fec2:\:/16 via fec1:\:1"
|
||||||
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
moon::"ip route add fec2:\:/16 via fec0:\:2"
|
||||||
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
sun::"ip route add fec1:\:/16 via fec0:\:1"
|
||||||
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
bob::"ip route add fec1:\:/16 via fec2:\:1"
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
sun::iptables-restore < /etc/iptables.rules
|
sun::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
moon::swanctl --terminate --ike gw-gw 2> /dev/null
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
sun::iptables-restore < /etc/iptables.rules
|
sun::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
moon::expect-connection net
|
moon::expect-connection net
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::rm /etc/swanctl/ecdsa/carolKey.pem
|
carol::rm /etc/swanctl/ecdsa/carolKey.pem
|
||||||
dave::rm /etc/swanctl/ecdsa/daveKey.pem
|
dave::rm /etc/swanctl/ecdsa/daveKey.pem
|
||||||
moon::rm /etc/swanctl/ecdsa/moonKey.pem
|
moon::rm /etc/swanctl/ecdsa/moonKey.pem
|
||||||
|
|
|
@ -4,9 +4,9 @@ dave::iptables-restore < /etc/iptables.rules
|
||||||
carol::rm /etc/swanctl/rsa/carolKey.pem
|
carol::rm /etc/swanctl/rsa/carolKey.pem
|
||||||
dave::rm /etc/swanctl/rsa/daveKey.pem
|
dave::rm /etc/swanctl/rsa/daveKey.pem
|
||||||
moon::rm /etc/swanctl/rsa/moonKey.pem
|
moon::rm /etc/swanctl/rsa/moonKey.pem
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
moon::expect-connection net
|
moon::expect-connection net
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,6 +1,6 @@
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
|
@ -1,9 +1,9 @@
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
carol::iptables-restore < /etc/iptables.rules
|
carol::iptables-restore < /etc/iptables.rules
|
||||||
dave::iptables-restore < /etc/iptables.rules
|
dave::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,4 +1,4 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::rm /etc/swanctl/x509/moonCert.der
|
moon::rm /etc/swanctl/x509/moonCert.der
|
||||||
sun::rm /etc/swanctl/x509/sunCert.der
|
sun::rm /etc/swanctl/x509/sunCert.der
|
||||||
|
|
|
@ -1,7 +1,7 @@
|
||||||
moon::rm /etc/swanctl/x509/moonCert.pem
|
moon::rm /etc/swanctl/x509/moonCert.pem
|
||||||
sun::rm /etc/swanctl/x509/sunCert.pem
|
sun::rm /etc/swanctl/x509/sunCert.pem
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::rm /etc/swanctl/ecdsa/carolKey.pem
|
carol::rm /etc/swanctl/ecdsa/carolKey.pem
|
||||||
dave::rm /etc/swanctl/ecdsa/daveKey.pem
|
dave::rm /etc/swanctl/ecdsa/daveKey.pem
|
||||||
moon::rm /etc/swanctl/ecdsa/moonKey.pem
|
moon::rm /etc/swanctl/ecdsa/moonKey.pem
|
||||||
|
|
|
@ -4,9 +4,9 @@ dave::iptables-restore < /etc/iptables.rules
|
||||||
carol::rm /etc/swanctl/rsa/carolKey.pem
|
carol::rm /etc/swanctl/rsa/carolKey.pem
|
||||||
dave::rm /etc/swanctl/rsa/daveKey.pem
|
dave::rm /etc/swanctl/rsa/daveKey.pem
|
||||||
moon::rm /etc/swanctl/rsa/moonKey.pem
|
moon::rm /etc/swanctl/rsa/moonKey.pem
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
carol::rm /etc/swanctl/pkcs8/carolKey.pem
|
carol::rm /etc/swanctl/pkcs8/carolKey.pem
|
||||||
dave::rm /etc/swanctl/pkcs8/daveKey.pem
|
dave::rm /etc/swanctl/pkcs8/daveKey.pem
|
||||||
moon::rm /etc/swanctl/ecdsa/moonKey.pem
|
moon::rm /etc/swanctl/ecdsa/moonKey.pem
|
||||||
|
|
|
@ -4,9 +4,9 @@ dave::iptables-restore < /etc/iptables.rules
|
||||||
carol::rm /etc/swanctl/rsa/carolKey.pem
|
carol::rm /etc/swanctl/rsa/carolKey.pem
|
||||||
dave::rm /etc/swanctl/rsa/daveKey.pem
|
dave::rm /etc/swanctl/rsa/daveKey.pem
|
||||||
moon::rm /etc/swanctl/rsa/moonKey.pem
|
moon::rm /etc/swanctl/rsa/moonKey.pem
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
carol::systemctl start strongswan-swanctl
|
carol::systemctl start strongswan
|
||||||
dave::systemctl start strongswan-swanctl
|
dave::systemctl start strongswan
|
||||||
moon::expect-connection rw
|
moon::expect-connection rw
|
||||||
carol::expect-connection home
|
carol::expect-connection home
|
||||||
carol::swanctl --initiate --child home 2> /dev/null
|
carol::swanctl --initiate --child home 2> /dev/null
|
||||||
|
|
|
@ -1,5 +1,5 @@
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
sun::systemctl stop strongswan-swanctl
|
sun::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
sun::iptables-restore < /etc/iptables.flush
|
sun::iptables-restore < /etc/iptables.flush
|
||||||
moon::rm /etc/swanctl/pkcs12/moonCert.p12
|
moon::rm /etc/swanctl/pkcs12/moonCert.p12
|
||||||
|
|
|
@ -2,8 +2,8 @@ moon::cd /etc/swanctl; rm rsa/moonKey.pem x509/moonCert.pem x509ca/strongswanCer
|
||||||
sun::cd /etc/swanctl; rm rsa/sunKey.pem x509/sunCert.pem x509ca/strongswanCert.pem
|
sun::cd /etc/swanctl; rm rsa/sunKey.pem x509/sunCert.pem x509ca/strongswanCert.pem
|
||||||
moon::iptables-restore < /etc/iptables.rules
|
moon::iptables-restore < /etc/iptables.rules
|
||||||
sun::iptables-restore < /etc/iptables.rules
|
sun::iptables-restore < /etc/iptables.rules
|
||||||
moon::systemctl start strongswan-swanctl
|
moon::systemctl start strongswan
|
||||||
sun::systemctl start strongswan-swanctl
|
sun::systemctl start strongswan
|
||||||
moon::expect-connection gw-gw
|
moon::expect-connection gw-gw
|
||||||
sun::expect-connection gw-gw
|
sun::expect-connection gw-gw
|
||||||
moon::swanctl --initiate --child net-net 2> /dev/null
|
moon::swanctl --initiate --child net-net 2> /dev/null
|
||||||
|
|
|
@ -1,8 +1,8 @@
|
||||||
carol::swanctl --terminate --ike home
|
carol::swanctl --terminate --ike home
|
||||||
dave::swanctl --terminate --ike home
|
dave::swanctl --terminate --ike home
|
||||||
carol::systemctl stop strongswan-swanctl
|
carol::systemctl stop strongswan
|
||||||
dave::systemctl stop strongswan-swanctl
|
dave::systemctl stop strongswan
|
||||||
moon::systemctl stop strongswan-swanctl
|
moon::systemctl stop strongswan
|
||||||
moon::iptables-restore < /etc/iptables.flush
|
moon::iptables-restore < /etc/iptables.flush
|
||||||
carol::iptables-restore < /etc/iptables.flush
|
carol::iptables-restore < /etc/iptables.flush
|
||||||
dave::iptables-restore < /etc/iptables.flush
|
dave::iptables-restore < /etc/iptables.flush
|
||||||
|
|
Some files were not shown because too many files have changed in this diff Show More
Loading…
Reference in New Issue