Annotation of embedaddon/strongswan/testing/tests/swanctl/rw-eap-sim-radius/description.txt, revision 1.1
1.1 ! misho 1: The roadwarriors <b>carol</b> and <b>dave</b> set up a connection to gateway <b>moon</b>.
! 2: At the outset the gateway authenticates itself to the clients by sending
! 3: an IKEv2 <b>digital signature</b> accompanied by an X.509 certificate.
! 4: <p/>
! 5: Next the clients use the GSM <i>Subscriber Identity Module</i> (<b>EAP-SIM</b>)
! 6: method of the <i>Extensible Authentication Protocol</i> to authenticate themselves.
! 7: In this scenario triplets from the file <b>/etc/ipsec.d/triplets.dat</b> are used
! 8: instead of a physical SIM card.
! 9: <p/>
! 10: The gateway forwards all EAP messages to the RADIUS server <b>alice</b>
! 11: which also uses static triplets.
! 12: <p/>
! 13: The roadwarrior <b>dave</b> sends wrong EAP-SIM triplets. As a consequence
! 14: the RADIUS server <b>alice</b> returns an <b>Access-Reject</b> message
! 15: and the gateway <b>moon</b> sends back <b>EAP_FAILURE</b>.
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to description.txt CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / embedaddon / strongswan / testing / tests / swanctl / rw-eap-sim-radius