strongSwan KVM Tests / ikev1-stroke / config-payload-push
Test ikev1-stroke/config-payload-push
Description
The roadwarriors carol and dave set up a connection each to gateway moon. The gateway pushes virtual IP addresses to carol and davevia the IKEv1 Mode Config protocol in push mode. moon explicitly assigns a specific virtual IP to each of the two clients. Upon the successful establishment of the IPsec tunnel, leftfirewall=yes automatically inserts iptables-based firewall rules that let pass the tunneled traffic. In order to test the tunnels, carol and dave then ping the client alice behind the gateway moon. The source IP addresses of the two pings will be the virtual IPs 10.3.0.1 and 10.3.0.2, respectively.