version 1.1.1.1, 2020/06/03 09:46:46
|
version 1.1.1.2, 2021/03/17 00:20:10
|
Line 1
|
Line 1
|
moon::rm /etc/ipsec.secrets | moon::rm /etc/swanctl/rsa/* |
moon::tkm_cfgtool -c /etc/tkm/tkm.conf -i /etc/ipsec.conf -t /etc/tkm/tkm.bin -s /usr/local/share/tkm/tkmconfig.xsd | moon::tkm_cfgtool -c /etc/tkm/tkm.conf -i /etc/swanctl/swanctl.conf -t /etc/tkm/tkm.bin -s /usr/local/share/tkm/tkmconfig.xsd |
moon::cat /etc/ipsec.conf | moon::cat /etc/swanctl/swanctl.conf |
moon::tkm_keymanager -c /etc/tkm/tkm.bin -k /etc/tkm/moonKey.der -r /etc/tkm/strongswanCert.der >/tmp/tkm.log 2>&1 & | moon::tkm_keymanager -c /etc/tkm/tkm.bin -k /etc/tkm/moonKey.der -r /etc/tkm/strongswanCert.der:1 >/tmp/tkm.log 2>&1 & |
moon::expect-file /tmp/tkm.rpc.ike |
moon::expect-file /tmp/tkm.rpc.ike |
moon::DAEMON_NAME=charon-tkm ipsec start | moon::service charon-tkm start |
sun::ipsec start | sun::systemctl start strongswan |
sun::expect-connection net-net |
sun::expect-connection net-net |
moon::DAEMON_NAME=charon-tkm expect-connection conn1 | moon::expect-connection conn1 |
moon::DAEMON_NAME=charon-tkm ipsec up conn1 | moon::swanctl --initiate --child conn1 2> /dev/null |