iptables -t nat -F
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# iptables -F
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# 
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# ip addr add 192.1.3.130/24 dev eth1
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# # Destination NAT to east's address not the port
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# iptables -t nat -A PREROUTING -d 192.1.3.130 -j DNAT --to-destination 192.1.2.23
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# # A tunnel should have established with non-zero byte counters
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# ip addr show scope global
2: ip_vti0@NONE: <NOARP> mtu 1480 qdisc noop state DOWN group default qlen 1000
    link/ipip 0.0.0.0 brd 0.0.0.0
19274: eth0@if19275: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
    link/ether 06:9f:33:9e:cd:32 brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 192.1.2.254/24 scope global eth0
       valid_lft forever preferred_lft forever
19276: eth1@if19277: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 3a:a8:f0:8a:98:6e brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 192.1.3.254/24 scope global eth1
       valid_lft forever preferred_lft forever
    inet 192.1.3.130/24 scope global secondary eth1
       valid_lft forever preferred_lft forever
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# # jacob two two for east?
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# ipsec whack --trafficstatus
whack: Pluto is not running (no "/run/pluto/pluto.ctl")
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server 33]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 33 final.sh 'ipsec whack --trafficstatus' <<<<<<<<<<tuc<<<<<<<<<<ipsec whack --trafficstatus
whack: Pluto is not running (no "/run/pluto/pluto.ctl")
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server 33]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 33 final.sh 'ipsec whack --trafficstatus' <<<<<<<<<<tuc<<<<<<<<<<../../pluto/bin/ipsec-look.sh
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# # you should see both RSA and NULL
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# grep IKEv2_AUTH_ /tmp/pluto.log
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server 1]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 1 final.sh 'grep IKEv2_AUTH_ /tmp/pluto.log' <<<<<<<<<<tuc<<<<<<<<<<: ==== cut ====
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# ipsec auto --status
whack: Pluto is not running (no "/run/pluto/pluto.ctl")
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server 33]# >>>>>>>>>>cutnonzeroexit>>>>>>>>>> exit status 33 final.sh 'ipsec auto --status' <<<<<<<<<<tuc<<<<<<<<<<ipsec stop
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Redirecting to: /etc/init.d/ipsec stop
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Missing control file /run/pluto/pluto.ctl - is pluto running?
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# #check the ip extra ip address/sourceip address is removed
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# ip addr show scope global
2: ip_vti0@NONE: <NOARP> mtu 1480 qdisc noop state DOWN group default qlen 1000
    link/ipip 0.0.0.0 brd 0.0.0.0
19274: eth0@if19275: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
Error: Peer netns reference is invalid.
    link/ether 06:9f:33:9e:cd:32 brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 192.1.2.254/24 scope global eth0
       valid_lft forever preferred_lft forever
19276: eth1@if19277: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000
    link/ether 3a:a8:f0:8a:98:6e brd ff:ff:ff:ff:ff:ff link-netnsid 0
    inet 192.1.3.254/24 scope global eth1
       valid_lft forever preferred_lft forever
    inet 192.1.3.130/24 scope global secondary eth1
       valid_lft forever preferred_lft forever
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# : ==== tuc ====
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# ../bin/check-for-core.sh
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# if [ -f /sbin/ausearch ]; then ausearch -r -m avc -ts recent ; fi
type=AVC msg=audit(1566825647.459:207885): avc:  denied  { write } for  pid=9228 comm="ip" path="/tmp/pluto.log" dev="dm-0" ino=63872129 scontext=unconfined_u:system_r:ifconfig_t:s0 tcontext=unconfined_u:object_r:container_file_t:s0:c718,c778 tclass=file permissive=1
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]# : ==== end ====
kroot@swantest:/home/build/libreswan/testing/pluto/certoe-12-nat-server\[root@nic certoe-12-nat-server]#