Poster of Linux kernelThe best gift for a Linux geek
IPSEC_SHOWPOLICY

IPSEC_SHOWPOLICY

Section: 7 May 2003 (8) Updated: 11/14/2008
Local index Up
 

NAME

ipsec_showpolicy - dump policy of socket found as stdin  

SYNOPSIS

ipsec showpolicy

ipsec showpolicy --udpport --sockpolicy --packetcountnum

 

DESCRIPTION

showpolicy

calls the ipsec_policy_lookup(3) function on the file description which is its stdin.

It then dumps the resulting query in a human readable form.

With the --udp option, it opens a UDP port, and dumps policy on each packet received on that port using the IP_IPSEC_RECVREF socket option.

The --maxpacket option causes the program to exit after processing that many packets. This can be used in test cases.

This is a test program. One might run it from inetd, via:

discard stream tcp nowait nobody /usr/local/libexec/ipsec/showpolicy showpolicy

One could also run it from the command line via:

ipsec showpolicy --udp 9 --sockpolicy --maxpacket 2  

FILES

/var/run/pluto/ipsecpolicy.ctl  

SEE ALSO

ipsec(8), ipsec_policy_query(3), ipsec_pluto(8)  

HISTORY

Written for the Linux FreeS/WAN project <http://www.freeswan.org/> by Michael Richardson


 

Index

NAME
SYNOPSIS
DESCRIPTION
FILES
SEE ALSO
HISTORY

This document was created by man2html, using the manual pages.
Time: 22:01:50 GMT, April 16, 2011