X7ROOT File Manager
Current Path:
/usr/libexec/ipsec
usr
/
libexec
/
ipsec
/
📁
..
📄
_import_crl
(154.26 KB)
📄
_keycensor
(1.38 KB)
📄
_plutorun
(2.98 KB)
📄
_secretcensor
(1.86 KB)
📄
_stackmanager
(14 KB)
📄
_unbound-hook
(1.97 KB)
📄
_updown
(4.23 KB)
📄
_updown.klips
(18.3 KB)
📄
_updown.netkey
(23.31 KB)
📄
addconn
(210.56 KB)
📄
algparse
(345.43 KB)
📄
auto
(5.74 KB)
📄
barf
(11.82 KB)
📄
cavp
(346.02 KB)
📄
enumcheck
(85.1 KB)
📄
eroute
(93.81 KB)
📄
klipsdebug
(69.61 KB)
📄
look
(4.2 KB)
📄
newhostkey
(3.23 KB)
📄
pf_key
(69.18 KB)
📄
pluto
(1.37 MB)
📄
readwriteconf
(182.2 KB)
📄
rsasigkey
(159.04 KB)
📄
setup
(5.58 KB)
📄
show
(3.46 KB)
📄
showhostkey
(159.3 KB)
📄
spi
(346.27 KB)
📄
spigrp
(85.76 KB)
📄
tncfg
(130.14 KB)
📄
verify
(12.04 KB)
📄
whack
(137.93 KB)
Editing: setup
#!/bin/sh # IPsec startup and shutdown command # Copyright (C) 1998, 1999, 2001 Henry Spencer. # Copyright (C) 2012 Paul Wouters <paul@libreswan.org> # Copyright (C) 2013-2018 Tuomo Soini <tis@foobar.fi> # Copyright (C) 2016 Kim B. Heino <b@bbbs.net> # # This program is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at your # option) any later version. See <http://www.fsf.org/copyleft/gpl.txt>. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY # or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License # for more details. # # This is the version for use on Linux. # Misc. paths (some of this should perhaps be overrideable from ipsec.conf). rundir=/run/pluto #pluto searches the current directory, so this is required for making it selinux compliant cd / #/etc/resolv.conf related paths LIBRESWAN_RESOLV_CONF=${rundir}/libreswan-resolv-conf-backup ORIG_RESOLV_CONF=/etc/resolv.conf if [ $(ip addr list|grep -c cipsec) -ne 0 ]; then echo "Cisco IPsec client is already loaded, aborting! (cipsec# device found)" exit 1 fi initsystem=unknown if [ -d /run/systemd/system ]; then initsystem=systemd elif [ -f /sbin/start ]; then if [ -r /etc/redhat-release ]; then initsystem=rhsysv else initsystem=upstart fi elif [ -f /sbin/rc-service ]; then initsystem=openrc elif [ -x /etc/init.d/ipsec ]; then initsystem=sysv fi case "$1" in start|--start|_autostart) # preliminaries mkdir -p ${rundir} chmod 700 ${rundir} > /dev/null 2>/dev/null # starting a stack will unload any loaded stack first (same or different stack) [ -f /proc/modules ] && ipsec _stackmanager start # Finally start the pluto daemon in a restart loop if [ ${initsystem} = systemd ]; then systemctl status ipsec.service > /dev/null RETVAL=$? if [ $RETVAL -eq 0 ]; then echo "systemd: ipsec service is already running" exit 1 else echo "Redirecting to: systemctl start ipsec.service" exec systemctl start ipsec.service fi elif [ ${initsystem} = rhsysv ]; then echo "Redirecting to: service ipsec start" exec service ipsec start elif [ ${initsystem} = upstart ]; then echo "Redirecting to: start ipsec" exec start ipsec elif [ ${initsystem} = openrc ]; then echo "Redirecting to: rc-service ipsec start" exec rc-service ipsec start elif [ ${initsystem} = sysv ]; then echo "Redirecting to: /etc/init.d/ipsec start" exec /etc/init.d/ipsec start else echo "Unknown init system in use - aborted" exit 3 fi exit 0 ;; stop|--stop|_autostop) # _autostop is same as stop # Shut things down. if [ ${initsystem} = systemd ]; then echo "Redirecting to: systemctl stop ipsec.service" # don't exec, we need to cleanup the IPsec stack afterwards systemctl stop ipsec.service elif [ ${initsystem} = rhsysv ]; then echo "Redirecting to: service ipsec stop" exec service ipsec stop elif [ ${initsystem} = upstart ]; then echo "Redirecting to: stop ipsec" stop ipsec elif [ ${initsystem} = openrc ]; then echo "Redirecting to: rc-service ipsec stop" exec rc-service ipsec stop elif [ ${initsystem} = sysv ]; then echo "Redirecting to: /etc/init.d/ipsec stop" exec /etc/init.d/ipsec stop else echo "Unknown init system in use - aborted" exit 3 fi # Remove any loaded IPsec stack [ -f /proc/modules ] && ipsec _stackmanager stop # If stack is non-modular, we want to force clean too [ -f /proc/net/pf_key ] && ipsec eroute --clear [ -f /proc/net/pfkey ] && ip xfrm state flush && ip xfrm policy flush # Cleaning up backup resolv.conf if [ -e ${LIBRESWAN_RESOLV_CONF} ]; then if grep 'Libreswan' ${ORIG_RESOLV_CONF} > /dev/null 2>&1; then cp ${LIBRESWAN_RESOLV_CONF} ${ORIG_RESOLV_CONF} fi rm -f ${LIBRESWAN_RESOLV_CONF} fi exit 0 ;; status|--status) if [ ${initsystem} = systemd ]; then echo "Redirecting to: systemctl status ipsec.service" exec systemctl status ipsec.service elif [ ${initsystem} = rhsysv ]; then echo "Redirecting to: service ipsec status" exec service ipsec status elif [ ${initsystem} = upstart ]; then echo "Redirecting to: status ipsec" exec status ipsec elif [ ${initsystem} = openrc ]; then echo "Redirecting to: rc-service ipsec status" exec rc-service ipsec status elif [ ${initsystem} = sysv ]; then echo "Redirecting to: /etc/init.d/ipsec status" exec /etc/init.d/ipsec status else echo "Unknown init system in use - aborted" exit 3 fi exit 0 ;; restart|--restart) # assumes preparations for running have already been done, # as service should be running now if [ ${initsystem} = systemd ]; then echo "Redirecting to: systemctl restart ipsec.service" exec systemctl restart ipsec.service elif [ ${initsystem} = rhsysv ]; then echo "Redirecting to: service ipsec restart" exec service ipsec restart elif [ ${initsystem} = upstart ]; then echo "Redirecting to: restart ipsec" exec restart ipsec elif [ ${initsystem} = openrc ]; then echo "Redirecting to: rc-service ipsec restart" exec rc-service ipsec restart elif [ ${initsystem} = sysv ]; then echo "Redirecting to: /etc/init.d/ipsec restart" exec /etc/init.d/ipsec restart else echo "Unknown init system in use - aborted" exit 3 fi exit 0 ;; *) echo "Usage: {--start|--stop|--restart|--status}" >&2 exit 2 esac exit 0
Upload File
Create Folder