[Swan-dev] allowing east as an "initiator"

Paul Wouters paul at nohats.ca
Fri Mar 20 20:37:13 EET 2015


On Fri, 20 Mar 2015, Andrew Cagney wrote:

> I would like to have east initiate a rekey on-demand.  That is:
> 
> - have west establish an IKE-SA with east (we do this all the time)
> 
> - have east (the "original responder") make a request - here rekey but could be anything(1) - presumably initiated by one of my hacked up wack commands
> 
>   I figured I could add an "eastrun.sh" containing a wack command I hacked up and use that.  Alas, no.  swantest is strident that:
> 
> - east is not the initiator
> 
> - the initiator is initialized last
> 
> Sign.   Does anyone have a suggestion for how to do this?

We had some thoughts in the past, not implemented, that we could have
numbered run files, eg westrun1.sh eastrun2.sh westrun3.sh and that
those would be executed one after the other. But no code was written
to implement that.

Paul


More information about the Swan-dev mailing list