/testing/guestbin/swan-prep --nokeys
Creating empty NSS database
east #
 # scrub any password file
east #
 :> /etc/ipsec.secrets
east #
 # start
east #
 ipsec start
Redirecting to: [initsystem]
east #
 ../../guestbin/wait-until-pluto-started
east #
 # generate fresh keys
east #
 ../../guestbin/genhostkey.sh $PWD
raw rsa
us=east them=west leftright=right
east #
 # fix/add hostkey config
east #
 cp ipsec.conf /etc/ipsec.conf
east #
 cat OUTPUT/east.hostkey >>/etc/ipsec.conf
east #
 cat OUTPUT/west.hostkey >>/etc/ipsec.conf
east #
 cat /etc/ipsec.conf
# /etc/ipsec.conf - Libreswan IPsec configuration file
config setup
	ikev1-policy=accept
	# put the logs in /tmp for the UMLs, so that we can operate
	# without syslogd, which seems to break on UMLs
	logfile=/tmp/pluto.log
	logtime=no
	logappend=no
	dumpdir=/tmp
	plutodebug=all
conn hostkey
	keyexchange=ikev1
	left=192.1.2.45
	leftsubnet=192.0.1.0/24
	right=192.1.2.23
	rightsubnet=192.0.2.0/24
	# rsakey <<KEYID#1>>
	rightrsasigkey=0s<<RAW-PUBKEY#1>>
	# rsakey <<KEYID#2>>
	leftrsasigkey=0s<<RAW-PUBKEY#2>>
east #
 ipsec auto --add hostkey
"hostkey": added IKEv1 connection
east #
