Version 2 - History - ipsec - strongSwan

2

Martin Willi

3

Martin Willi

'''ipsec''' is actually an umbrella command comprising a collection of individual sub commands of the form

4

2

Martin Willi

5

2

Martin Willi

  ''ipsec <command> [<argument>] [<options>]''

6

2

Martin Willi

7

2

Martin Willi

that can be used to control and monitor IPsec connections as well as the IKE daemons.

8

2

Martin Willi

9

2

Martin Willi

== Control Commands ==

10

2

Martin Willi

11

2

Martin Willi

'''ipsec start [ ''<starter options>'' ]'''

12

2

Martin Willi

13

2

Martin Willi

'''ipsec stop'''

14

2

Martin Willi

15

2

Martin Willi

'''ipsec restart [ ''<starter options>'' ]'''

16

2

Martin Willi

   is equivalent to '''ipsec stop''' followed by '''ipsec start [ ''<starter options>'' ]''' after a sleep period of 2 seconds.

17

2

Martin Willi

18

2

Martin Willi

'''ipsec update'''

19

2

Martin Willi

20

2

Martin Willi

'''ipsec reload'''

21

2

Martin Willi

22

2

Martin Willi

'''ipsec up  ''<conn name>'' '''

23

2

Martin Willi

24

2

Martin Willi

'''ipsec down  ''<conn name>'' '''

25

2

Martin Willi

26

2

Martin Willi

'''ipsec route  ''<conn name>'' '''

27

2

Martin Willi

28

2

Martin Willi

'''ipsec unroute  ''<conn name>'' '''

29

2

Martin Willi

30

2

Martin Willi

31

2

Martin Willi

'''ipsec status [ ''<conn name>'' ] '''

32

2

Martin Willi

33

2

Martin Willi

34

2

Martin Willi

'''ipsec statusall [ ''<conn name>'' ] '''

35

2

Martin Willi

36

2

Martin Willi

37

2

Martin Willi

== Info Commands ==

38

2

Martin Willi

39

2

Martin Willi

'''ipsec version'''

40

2

Martin Willi

41

2

Martin Willi

'''ipsec copyright'''

42

2

Martin Willi

43

2

Martin Willi

'''ipsec --versioncode'''

44

2

Martin Willi

45

2

Martin Willi

'''ipsec --directory'''

46

2

Martin Willi

47

2

Martin Willi

'''ipsec --confdir'''

48

2

Martin Willi

49

2

Martin Willi

== List Commands ==

50

2

Martin Willi

51

2

Martin Willi

'''ipsec listaacerts [ --utc ]'''

52

2

Martin Willi

53

2

Martin Willi

'''ipsec listacerts [ --utc ]'''

54

2

Martin Willi

55

2

Martin Willi

'''ipsec listalgs'''

56

2

Martin Willi

   lists all registered IKE and ESP encryption and authentication algorithms as well as the supported Diffie-Hellman groups.

57

2

Martin Willi

   Supported by the IKEv1 pluto daemon only.

58

2

Martin Willi

59

2

Martin Willi

'''ipsec listcacerts [ --utc ]'''

60

2

Martin Willi

61

2

Martin Willi

'''ipsec listcainfos [ --utc ]'''

62

2

Martin Willi

63

2

Martin Willi

'''ipsec listcards [ --utc ]'''

64

2

Martin Willi

   lists all certificates found on attached smart cards.

65

2

Martin Willi

   Supported by the IKEv1 pluto daemon only.

66

2

Martin Willi

67

2

Martin Willi

'''ipsec listcrls [ --utc ]'''

68

2

Martin Willi

69

2

Martin Willi

'''ipsec listcerts [ --utc ]'''

70

2

Martin Willi

71

2

Martin Willi

'''ipsec listgroups [ --utc ]'''

72

2

Martin Willi

73

2

Martin Willi

'''ipsec listocsp [ --utc ]'''

74

2

Martin Willi

75

2

Martin Willi

'''ipsec listocspcerts [ --utc ]'''

76

2

Martin Willi

77

2

Martin Willi

'''ipsec listpubkeys [ --utc ]'''

78

2

Martin Willi

   lists the cached RSA public keys.

79

2

Martin Willi

   Supported by the IKEv1 pluto daemon only.

80

2

Martin Willi

81

2

Martin Willi

'''ipsec listall [ --utc ]'''

82

2

Martin Willi

83

2

Martin Willi

== Reread Commands ==

84

2

Martin Willi

85

2

Martin Willi

'''ipsec rereadaacerts'''

86

2

Martin Willi

87

2

Martin Willi

'''ipsec rereadacerts'''

88

2

Martin Willi

89

2

Martin Willi

'''ipsec rereadcacerts'''

90

2

Martin Willi

91

2

Martin Willi

'''ipsec rereadcrls'''

92

2

Martin Willi

93

2

Martin Willi

'''ipsec rereadocspcerts'''

94

2

Martin Willi

95

2

Martin Willi

'''ipsec rereadsecrets'''

96

2

Martin Willi

97

2

Martin Willi

'''ipsec secrets'''

98

2

Martin Willi

   is equivalent to '''ipsec rereadsecrets'''.

99

2

Martin Willi

100

2

Martin Willi

'''ipsec rereadall'''

101

2

Martin Willi

102

2

Martin Willi

== Purge Commands ==

103

2

Martin Willi

104

2

Martin Willi

'''ipsec purgeocsp'''

105

2

Martin Willi

106

2

Martin Willi

== PKCS11 Proxy Commands ==

107

2

Martin Willi

108

2

Martin Willi

'''ipsec scencrypt'''

109

2

Martin Willi

110

2

Martin Willi

'''ipsec scdecrypt'''

Project

General

Profile

strongSwan

ipsec » History » Version 2

-Martin Willi
+= ipsec =
 Martin Willi
-Martin Willi
+'''ipsec''' is actually an umbrella command comprising a collection of individual sub commands of the form
 Martin Willi
-Martin Willi
+  ''ipsec <command> [<argument>] [<options>]''
 Martin Willi
-Martin Willi
+that can be used to control and monitor IPsec connections as well as the IKE daemons.
 Martin Willi
-Martin Willi
+== Control Commands ==
 Martin Willi
-Martin Willi
+'''ipsec start [ ''<starter options>'' ]'''
 Martin Willi
-Martin Willi
+'''ipsec stop'''
 Martin Willi
-Martin Willi
+'''ipsec restart [ ''<starter options>'' ]'''
-Martin Willi
+   is equivalent to '''ipsec stop''' followed by '''ipsec start [ ''<starter options>'' ]''' after a sleep period of 2 seconds.
 Martin Willi
-Martin Willi
+'''ipsec update'''
 Martin Willi
-Martin Willi
+'''ipsec reload'''
 Martin Willi
-Martin Willi
+'''ipsec up  ''<conn name>'' '''
 Martin Willi
-Martin Willi
+'''ipsec down  ''<conn name>'' '''
 Martin Willi
-Martin Willi
+'''ipsec route  ''<conn name>'' '''
 Martin Willi
-Martin Willi
+'''ipsec unroute  ''<conn name>'' '''
 Martin Willi
 Martin Willi
-Martin Willi
+'''ipsec status [ ''<conn name>'' ] '''
 Martin Willi
 Martin Willi
-Martin Willi
+'''ipsec statusall [ ''<conn name>'' ] '''
 Martin Willi
 Martin Willi
-Martin Willi
+== Info Commands ==
 Martin Willi
-Martin Willi
+'''ipsec version'''
 Martin Willi
-Martin Willi
+'''ipsec copyright'''
 Martin Willi
-Martin Willi
+'''ipsec --versioncode'''
 Martin Willi
-Martin Willi
+'''ipsec --directory'''
 Martin Willi
-Martin Willi
+'''ipsec --confdir'''
 Martin Willi
-Martin Willi
+== List Commands ==
 Martin Willi
-Martin Willi
+'''ipsec listaacerts [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listacerts [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listalgs'''
-Martin Willi
+   lists all registered IKE and ESP encryption and authentication algorithms as well as the supported Diffie-Hellman groups.
-Martin Willi
+   Supported by the IKEv1 pluto daemon only.
 Martin Willi
-Martin Willi
+'''ipsec listcacerts [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listcainfos [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listcards [ --utc ]'''
-Martin Willi
+   lists all certificates found on attached smart cards.
-Martin Willi
+   Supported by the IKEv1 pluto daemon only.
 Martin Willi
-Martin Willi
+'''ipsec listcrls [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listcerts [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listgroups [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listocsp [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listocspcerts [ --utc ]'''
 Martin Willi
-Martin Willi
+'''ipsec listpubkeys [ --utc ]'''
-Martin Willi
+   lists the cached RSA public keys.
-Martin Willi
+   Supported by the IKEv1 pluto daemon only.
 Martin Willi
-Martin Willi
+'''ipsec listall [ --utc ]'''
 Martin Willi
-Martin Willi
+== Reread Commands ==
 Martin Willi
-Martin Willi
+'''ipsec rereadaacerts'''
 Martin Willi
-Martin Willi
+'''ipsec rereadacerts'''
 Martin Willi
-Martin Willi
+'''ipsec rereadcacerts'''
 Martin Willi
-Martin Willi
+'''ipsec rereadcrls'''
 Martin Willi
-Martin Willi
+'''ipsec rereadocspcerts'''
 Martin Willi
-Martin Willi
+'''ipsec rereadsecrets'''
 Martin Willi
-Martin Willi
+'''ipsec secrets'''
-Martin Willi
+   is equivalent to '''ipsec rereadsecrets'''.
 Martin Willi
-Martin Willi
+'''ipsec rereadall'''
 Martin Willi
-Martin Willi
+== Purge Commands ==
 Martin Willi
-Martin Willi
+'''ipsec purgeocsp'''
 Martin Willi
-Martin Willi
+== PKCS11 Proxy Commands ==
 Martin Willi
-Martin Willi
+'''ipsec scencrypt'''
 Martin Willi
-Martin Willi
+'''ipsec scdecrypt'''