strongSwan KVM Tests / sql / rw-psk-rsa-split

Test sql/rw-psk-rsa-split

Description

The roadwarriors carol and dave set up a connection each to gateway moon. The roadwarriors' authentication is based on Pre-Shared Keys (PSK) whereas the gateway uses an RSA signature (RSASIG) certified by an X.509 certificate. Upon the successful establishment of the IPsec tunnels, automatically inserted iptables-based firewall rules let pass the tunneled traffic. In order to test both tunnel and firewall, both carol and dave ping the client alice behind the gateway moon. alice moon carol winnetou dave

moon

 

carol

 

dave

 

tcpdump