--- road.console.txt 2019-08-24 18:12:56.224675652 +0000 +++ OUTPUT/road.console.txt 2019-08-26 13:31:15.099177284 +0000 @@ -5,6 +5,7 @@ echo "192.1.3.252/30" >> /etc/ipsec.d/policies/clear road # ifdown eth0 +Error: NetworkManager is not running. road # sed -i '/IPV6/d' /etc/sysconfig/network-scripts/ifcfg-eth0 road # @@ -17,6 +18,7 @@ echo "GATEWAY=192.1.3.254" >> /etc/sysconfig/network-scripts/ifcfg-eth0 road # ifup eth0 +Error: NetworkManager is not running. road # ipsec start Redirecting to: [initsystem] @@ -63,9 +65,9 @@ # remove this end ip next one will take over road # ip addr show scope global dev eth0 | grep -v valid_lft -2: eth0: mtu 1500 qdisc fq_codel state UP group default - link/ether 12:00:00:ab:cd:02 brd ff:ff:ff:ff:ff:ff - inet 192.1.3.209/24 brd 192.1.3.255 scope global eth0 +22399: eth0@if22400: mtu 1500 qdisc noqueue state UP group default qlen 1000 + link/ether 86:2d:71:1c:eb:70 brd ff:ff:ff:ff:ff:ff link-netnsid 0 + inet 192.1.3.209/24 scope global eth0 road # # delete the routes down to simulate WiFi link down. road # @@ -75,6 +77,7 @@ RTNETLINK answers: No such process road # ifdown eth0 +Error: NetworkManager is not running. road # sed -i '/IPADDR/d' /etc/sysconfig/network-scripts/ifcfg-eth0 road # @@ -91,30 +94,44 @@ # would the traffic leak in plain road # ip addr show dev lo -1: lo: mtu 65536 qdisc noqueue state UNKNOWN group default +1: lo: mtu 65536 qdisc noqueue state UNKNOWN group default qlen 1000 link/loopback 00:00:00:00:00:00 brd 00:00:00:00:00:00 inet 127.0.0.1/8 scope host lo valid_lft forever preferred_lft forever + inet 192.0.3.10/32 scope 50 lo + valid_lft forever preferred_lft forever road # # let libreswan detect change and initiate MOBIKE update road # ifup eth0 +Error: NetworkManager is not running. +road # + # restore config files while we wait +road # + sed -i '/IPADDR/d' /etc/sysconfig/network-scripts/ifcfg-eth0 +road # + sed -i '/GATEWAY/d' /etc/sysconfig/network-scripts/ifcfg-eth0 +road # + echo "IPADDR=192.1.3.209" >> /etc/sysconfig/network-scripts/ifcfg-eth0 +road # + echo "GATEWAY=192.1.3.254" >> /etc/sysconfig/network-scripts/ifcfg-eth0 road # sleep 10 road # # ip addr show scope global dev eth0 | grep -v -E '(valid_lft|ether|noqueue)' road # ip addr show scope global dev eth0 | grep -v valid_lft -2: eth0: mtu 1500 qdisc fq_codel state UP group default - link/ether 12:00:00:ab:cd:02 brd ff:ff:ff:ff:ff:ff - inet 192.1.33.222/24 brd 192.1.33.255 scope global eth0 +22399: eth0@if22400: mtu 1500 qdisc noqueue state UP group default qlen 1000 + link/ether 86:2d:71:1c:eb:70 brd ff:ff:ff:ff:ff:ff link-netnsid 0 + inet 192.1.3.209/24 scope global eth0 road # # MOBIKE ping should work road # ping -W 8 -q -n -c 8 192.1.2.23 PING 192.1.2.23 (192.1.2.23) 56(84) bytes of data. --- 192.1.2.23 ping statistics --- -8 packets transmitted, 0 received, 100% packet loss, time XXXX +8 packets transmitted, 8 received, 0% packet loss, time XXXX +rtt min/avg/max/mdev = 0.XXX/0.XXX/0.XXX/0.XXX ms road # # "ip xfrm" output this end should be 192.1.33.222 road # @@ -122,15 +139,15 @@ done road # ip xfrm state -src 192.1.2.23 dst 192.1.33.222 +src 192.1.2.23 dst 192.1.3.209 proto esp spi 0xSPISPI reqid REQID mode tunnel enc cbc(aes) 0xENCKEY -src 192.1.33.222 dst 192.1.2.23 +src 192.1.3.209 dst 192.1.2.23 proto esp spi 0xSPISPI reqid REQID mode tunnel enc cbc(aes) 0xENCKEY road # ipsec whack --trafficstatus -006 #2: "road-eastnet"[1] 192.1.2.23, type=ESP, add_time=1234567890, inBytes=168, outBytes=672, id='192.1.2.23', lease=192.0.3.10/32 +006 #2: "road-eastnet"[1] 192.1.2.23, type=ESP, add_time=1234567890, inBytes=840, outBytes=840, id='192.1.2.23', lease=192.0.3.10/32 road # road # ../bin/check-for-core.sh