../../guestbin/prep.sh
'ipsec.conf' -> '/etc/ipsec.conf'
'ipsec.secrets' -> '/etc/ipsec.secrets'
west #
 ipsec start
Redirecting to: [initsystem]
west #
 ../../guestbin/wait-until-pluto-started
west #
 ipsec whack --impair suppress_retransmits
west #
 ipsec auto --up westnet-eastnet-default
"westnet-eastnet-default" #1: initiating IKEv1 Main Mode connection
"westnet-eastnet-default" #1: sent Main Mode request
"westnet-eastnet-default" #1: sent Main Mode I2
"westnet-eastnet-default" #1: sent Main Mode I3
"westnet-eastnet-default" #1: Peer ID is ID_FQDN: '@east'
"westnet-eastnet-default" #1: ISAKMP SA established {auth=PRESHARED_KEY cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048}
"westnet-eastnet-default" #2: initiating Quick Mode IKEv1+PSK+ENCRYPT+TUNNEL+PFS+UP+IKE_FRAG_ALLOW+ESN_NO+ESN_YES
"westnet-eastnet-default" #2: sent Quick Mode request
"westnet-eastnet-default" #2: IPsec SA established tunnel mode {ESP=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 DPD=passive}
west #
 ../../guestbin/ipsec-kernel-state.sh | grep 'replay[-_=]'
	replay-window 0 flag af-unspec
	replay-window 0 flag af-unspec
	 replay_window 128, bitmap-length 4
west #
 ipsec stop
Redirecting to: [initsystem]
west #
 ipsec start
Redirecting to: [initsystem]
west #
 ../../guestbin/wait-until-pluto-started
west #
 ipsec whack --impair suppress_retransmits
west #
 ipsec auto --up westnet-eastnet-0
"westnet-eastnet-0" #1: initiating IKEv1 Main Mode connection
"westnet-eastnet-0" #1: sent Main Mode request
"westnet-eastnet-0" #1: sent Main Mode I2
"westnet-eastnet-0" #1: sent Main Mode I3
"westnet-eastnet-0" #1: Peer ID is ID_FQDN: '@east'
"westnet-eastnet-0" #1: ISAKMP SA established {auth=PRESHARED_KEY cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048}
"westnet-eastnet-0" #2: initiating Quick Mode IKEv1+PSK+ENCRYPT+TUNNEL+PFS+UP+IKE_FRAG_ALLOW+ESN_NO
"westnet-eastnet-0" #2: sent Quick Mode request
"westnet-eastnet-0" #2: IPsec SA established tunnel mode {ESP=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 DPD=passive}
west #
 ../../guestbin/ipsec-kernel-state.sh | grep 'replay[-_=]'
	replay-window 0 flag af-unspec
	replay-window 0 flag af-unspec
west #
 ipsec stop
Redirecting to: [initsystem]
west #
 ipsec start
Redirecting to: [initsystem]
west #
 ../../guestbin/wait-until-pluto-started
west #
 ipsec whack --impair suppress_retransmits
west #
 ipsec auto --up westnet-eastnet-64
"westnet-eastnet-64" #1: initiating IKEv1 Main Mode connection
"westnet-eastnet-64" #1: sent Main Mode request
"westnet-eastnet-64" #1: sent Main Mode I2
"westnet-eastnet-64" #1: sent Main Mode I3
"westnet-eastnet-64" #1: Peer ID is ID_FQDN: '@east'
"westnet-eastnet-64" #1: ISAKMP SA established {auth=PRESHARED_KEY cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048}
"westnet-eastnet-64" #2: initiating Quick Mode IKEv1+PSK+ENCRYPT+TUNNEL+PFS+UP+IKE_FRAG_ALLOW+ESN_NO+ESN_YES
"westnet-eastnet-64" #2: sent Quick Mode request
"westnet-eastnet-64" #2: IPsec SA established tunnel mode {ESP=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 DPD=passive}
west #
 ../../guestbin/ipsec-kernel-state.sh | grep 'replay[-_=]'
	replay-window 0 flag af-unspec
	replay-window 0 flag af-unspec
	 replay_window 64, bitmap-length 2
west #
 ipsec stop
Redirecting to: [initsystem]
west #
 ipsec start
Redirecting to: [initsystem]
west #
 ../../guestbin/wait-until-pluto-started
west #
 ipsec whack --impair suppress_retransmits
west #
 ipsec auto --up westnet-eastnet-256
"westnet-eastnet-256" #1: initiating IKEv1 Main Mode connection
"westnet-eastnet-256" #1: sent Main Mode request
"westnet-eastnet-256" #1: sent Main Mode I2
"westnet-eastnet-256" #1: sent Main Mode I3
"westnet-eastnet-256" #1: Peer ID is ID_FQDN: '@east'
"westnet-eastnet-256" #1: ISAKMP SA established {auth=PRESHARED_KEY cipher=AES_CBC_256 integ=HMAC_SHA2_256 group=MODP2048}
"westnet-eastnet-256" #2: initiating Quick Mode IKEv1+PSK+ENCRYPT+TUNNEL+PFS+UP+IKE_FRAG_ALLOW+ESN_NO+ESN_YES
"westnet-eastnet-256" #2: sent Quick Mode request
"westnet-eastnet-256" #2: IPsec SA established tunnel mode {ESP=>0xESPESP <0xESPESP xfrm=AES_CBC_128-HMAC_SHA1_96 DPD=passive}
west #
 ../../guestbin/ipsec-kernel-state.sh | grep 'replay[-_=]'
	replay-window 0 flag af-unspec
	replay-window 0 flag af-unspec
	 replay_window 256, bitmap-length 8
west #
 ipsec stop
Redirecting to: [initsystem]
west #
 echo done
done
west #
 
