strongSwan KVM Tests / ikev1 / xauth-id-psk-config
Test ikev1/xauth-id-psk-config
Description
The roadwarriors carol and dave set up a connection to gateway moon. The authentication is based on Pre-Shared Keys (PSK) followed by extended authentication (XAUTH) of carol and dave based on user names and passwords. Next carol and dave request a virtual IP via the IKEv1 Mode Config protocol by using the vips = 0.0.0.0 parameter. The virtual IP addresses are registered under the users' XAUTH identity.Upon the successful establishment of the IPsec tunnel, the updown-script automatically inserts iptables-based firewall rules that let pass the tunneled traffic. In order to test both tunnel and firewall, carol and dave ping the client alice behind the gateway moon.
