]> git.ipfire.org Git - people/ms/strongswan.git/commit
projects / people / ms / strongswan.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 15f392d) | patch
testing: Add a connmark plugin test
authorMartin Willi <martin@revosec.ch>
Tue, 18 Nov 2014 10:33:28 +0000 (11:33 +0100)
committerMartin Willi <martin@revosec.ch>
Fri, 20 Feb 2015 15:34:54 +0000 (16:34 +0100)
commit9ed09d5f771727a05df20df9a1cd0f48af9cef40
tree20d58ce15ade365a64b12631b949404aade9935btree | snapshot
parent15f392d9edbad4c062a5de64850d91080842cf08commit | diff
testing: Add a connmark plugin test

In this test two hosts establish a transport mode connection from behind
moon. sun uses the connmark plugin to distinguish the flows.

This is an example that shows how one can terminate L2TP/IPsec connections
from two hosts behind the same NAT. For simplification of the test, we use
an SSH connection instead, but this works for any connection initiated flow
that conntrack can track.
testing/tests/ikev2/host2host-transport-connmark/description.txt [new file with mode: 0644] blob
testing/tests/ikev2/host2host-transport-connmark/evaltest.dat [new file with mode: 0644] blob
testing/tests/ikev2/host2host-transport-connmark/hosts/alice/etc/ipsec.conf [new file with mode: 0644] blob
testing/tests/ikev2/host2host-transport-connmark/hosts/sun/etc/ipsec.conf [new file with mode: 0644] blob
testing/tests/ikev2/host2host-transport-connmark/hosts/sun/etc/strongswan.conf [new file with mode: 0644] blob
testing/tests/ikev2/host2host-transport-connmark/hosts/venus/etc/ipsec.conf [new file with mode: 0644] blob
testing/tests/ikev2/host2host-transport-connmark/posttest.dat [new file with mode: 0644] blob
testing/tests/ikev2/host2host-transport-connmark/pretest.dat [new file with mode: 0644] blob
testing/tests/ikev2/host2host-transport-connmark/test.conf [new file with mode: 0644] blob
Michael's strongswan development tree