/testing/guestbin/swan-prep --x509
Preparing X.509 files
road #
 ipsec start
Redirecting to: [initsystem]
road #
 /testing/pluto/bin/wait-until-pluto-started
road #
 ipsec whack --impair suppress-retransmits
road #
 ipsec auto --add westnet-eastnet-ipv4-psk-ikev2
002 added connection description "westnet-eastnet-ipv4-psk-ikev2"
road #
 ipsec whack --impair suppress-retransmits
road #
 echo "initdone"
initdone
road #
 ipsec auto --up  westnet-eastnet-ipv4-psk-ikev2
002 "westnet-eastnet-ipv4-psk-ikev2"[1] 192.1.2.23 #1: initiating v2 parent SA
1v2 "westnet-eastnet-ipv4-psk-ikev2"[1] 192.1.2.23 #1: initiate
1v2 "westnet-eastnet-ipv4-psk-ikev2"[1] 192.1.2.23 #1: STATE_PARENT_I1: sent v2I1, expected v2R1
031 "westnet-eastnet-ipv4-psk-ikev2"[1] 192.1.2.23 #1: STATE_PARENT_I1: 60 second timeout exceeded after 0 retransmits.  No response (or no acceptable response) to our first IKEv2 message
000 "westnet-eastnet-ipv4-psk-ikev2"[1] 192.1.2.23 #1: starting keying attempt 2 of an unlimited number, but releasing whack
road #
 ping -n -c 2 -I 192.0.2.1 192.1.2.23
bind: Cannot assign requested address
road #
 ipsec whack --trafficstatus
road #
 # change ip, emulating switching network
road #
 killall -9 pluto
road #
 ifconfig eth0 192.1.3.210 netmask 255.255.255.0
road #
 route add default gw 192.1.3.254
road #
 ipsec start
Redirecting to: [initsystem]
pluto: FATAL: lock file "/run/pluto/pluto.pid" already exists
| certs and keys locked by 'free_preshared_secrets'
| certs and keys unlocked by 'free_preshared_secrets'
| crl fetch request list locked by 'free_crl_fetch'
| crl fetch request list unlocked by 'free_crl_fetch'
ABORT: ASSERTION FAILED: event_initialized(&se->ev) (in free_signal_handlers() at server.c:624)
/etc/init.d/ipsec: line 120:  5496 Aborted                 (core dumped) ${IPSEC_EXECDIR}/pluto --config ${IPSEC_CONF} ${PLUTO_OPTIONS}
road #
 /testing/pluto/bin/wait-until-pluto-started
whack: is Pluto running?  connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused)
road #
 ipsec whack --impair suppress-retransmits
whack: is Pluto running?  connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused)
road #
 ipsec auto --add westnet-eastnet-ipv4-psk-ikev2
connect(pluto_ctl) failed: Connection refused
road #
 ipsec auto --up westnet-eastnet-ipv4-psk-ikev2
whack: is Pluto running?  connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused)
road #
 # should not fail to ping
road #
 ping -n -c 4 -I 192.0.2.1 192.1.2.23
bind: Cannot assign requested address
road #
 ipsec whack --trafficstatus
whack: is Pluto running?  connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused)
road #
 echo done
done
road #
 ipsec status | grep eastnet
whack: is Pluto running?  connect() for "/run/pluto/pluto.ctl" failed (111 Connection refused)
road #
 # should show no hits
road #
 grep INVALID_IKE_SPI /tmp/pluto.log
road #
road #
 ../bin/check-for-core.sh
road #
 if [ -f /sbin/ausearch ]; then ausearch -r -m avc -ts recent ; fi