linux openswan ipsec notes

configuration files

/etc/ipsec.conf
/etc/ipsec.secrets

start ipsec

# ipsec setup --start

adds a connection specification to the internal database within pluto

# ipsec auto --add connection

ask pluto to establish a connection based on an entry in its internal database

# ipsec auto --up connection

where connection = name of a connection in ipsec.conf

look for pluto messages in /var/log/

WTF is pluto????

...The IKE daemon. /usr/libexe/ipsec/pluto