../../guestbin/algo.sh
/etc/ipsec.conf ...
config setup
	# put the logs in /tmp for the UMLs, so that we can operate
	# without syslogd, which seems to break on UMLs
	logfile=/tmp/pluto.log
	logtime=no
	logappend=no
	dumpdir=/tmp
	plutodebug=all
conn algo
	# IKE
	ikev2=yes
	ike=aes-md5
	left=192.1.2.45
	right=192.1.2.23
	authby=secret
	leftid=@west
	rightid=@east
	# CHILD
	leftsubnet=192.0.1.0/24
	rightsubnet=192.0.2.0/24
	phase2=esp
	phase2alg=3des-sha1
	#type=
	#compress=
/etc/ipsec.d/ipsec.secrets ...
@west @east : PSK "ABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890"
starting pluto ...
Redirecting to: [initsystem]
002 "algo": added IKEv2 connection
east #
 ../../guestbin/wait-for.sh --match '#2: .* established' -- cat /tmp/pluto.log
"algo" #2: responder established Child SA using #1; IPsec tunnel [192.0.2.0-192.0.2.255:0-65535 0] -> [192.0.1.0-192.0.1.255:0-65535 0] {ESP/ESN=>0xESPESP <0xESPESP xfrm=3DES_CBC-HMAC_SHA1_96 DPD=passive}
east #
 ipsec whack --trafficstatus
006 #2: "algo", type=ESP, add_time=1234567890, inBytes=84, outBytes=84, maxBytes=2^63B, id='@west'
east #
 
