enabled firewall support

author: Andreas Steffen <andreas.steffen@strongswan.org> 2006-09-18 07:41:54 +0000
committer: Andreas Steffen <andreas.steffen@strongswan.org> 2006-09-18 07:41:54 +0000
commit: 957115957a805c62f80d08ef61760195b1bff37a (patch)
tree: 5ac362ecb824fd1791f77e85a6fb9ada712d3bc2 /testing/tests/ikev2/host2host-swapped
parent: f9aa9e2977b4415251ac011d202b4830af442134 (diff)
download: strongswan-957115957a805c62f80d08ef61760195b1bff37a.tar.bz2
strongswan-957115957a805c62f80d08ef61760195b1bff37a.tar.xz
4 files changed, 10 insertions, 2 deletions
diff --git a/testing/tests/ikev2/host2host-swapped/hosts/moon/etc/ipsec.conf b/testing/tests/ikev2/host2host-swapped/hosts/moon/etc/ipsec.conf
index b544d3a63..7a5c3a2ca 100755
--- a/testing/tests/ikev2/host2host-swapped/hosts/moon/etc/ipsec.conf
+++ b/testing/tests/ikev2/host2host-swapped/hosts/moon/etc/ipsec.conf
@@ -9,13 +9,14 @@ conn %default
 	keylife=20m
 	rekeymargin=3m
 	keyingtries=1
+	keyexchange=ikev2
 
 conn host-host
 	right=PH_IP_MOON
 	rightnexthop=%direct
 	rightcert=moonCert.pem
 	rightid=@moon.strongswan.org
+	rightfirewall=yes
 	left=PH_IP_SUN
 	leftid=@sun.strongswan.org
-	keyexchange=ikev2
 	auto=add
diff --git a/testing/tests/ikev2/host2host-swapped/hosts/sun/etc/ipsec.conf b/testing/tests/ikev2/host2host-swapped/hosts/sun/etc/ipsec.conf
index db1e72ab4..9add2f169 100755
--- a/testing/tests/ikev2/host2host-swapped/hosts/sun/etc/ipsec.conf
+++ b/testing/tests/ikev2/host2host-swapped/hosts/sun/etc/ipsec.conf
@@ -9,13 +9,14 @@ conn %default
 	keylife=20m
 	rekeymargin=3m
 	keyingtries=1
+	keyexchange=ikev2
 
 conn host-host
 	right=PH_IP_SUN
 	rightnexthop=%direct
 	rightcert=sunCert.pem
 	rightid=@sun.strongswan.org
+	rightfirewall=yes
 	left=PH_IP_MOON
 	leftid=@moon.strongswan.org
-	keyexchange=ikev2
 	auto=add
diff --git a/testing/tests/ikev2/host2host-swapped/posttest.dat b/testing/tests/ikev2/host2host-swapped/posttest.dat
index dff181797..52979508d 100644
--- a/testing/tests/ikev2/host2host-swapped/posttest.dat
+++ b/testing/tests/ikev2/host2host-swapped/posttest.dat
@@ -1,2 +1,6 @@
+moon::iptables -v -n -L
+sun::iptables -v -n -L
 moon::ipsec stop
 sun::ipsec stop
+moon::/etc/init.d/iptables stop 2> /dev/null
+sun::/etc/init.d/iptables stop 2> /dev/null
diff --git a/testing/tests/ikev2/host2host-swapped/pretest.dat b/testing/tests/ikev2/host2host-swapped/pretest.dat
index 3cf9fe3d2..52a519698 100644
--- a/testing/tests/ikev2/host2host-swapped/pretest.dat
+++ b/testing/tests/ikev2/host2host-swapped/pretest.dat
@@ -1,3 +1,5 @@
+moon::/etc/init.d/iptables start 2> /dev/null
+sun::/etc/init.d/iptables start 2> /dev/null
 moon::ipsec start
 sun::ipsec start
 moon::sleep 1
author	Andreas Steffen <andreas.steffen@strongswan.org>	2006-09-18 07:41:54 +0000
committer	Andreas Steffen <andreas.steffen@strongswan.org>	2006-09-18 07:41:54 +0000
commit	957115957a805c62f80d08ef61760195b1bff37a (patch)
tree	5ac362ecb824fd1791f77e85a6fb9ada712d3bc2 /testing/tests/ikev2/host2host-swapped
parent	f9aa9e2977b4415251ac011d202b4830af442134 (diff)
download	strongswan-957115957a805c62f80d08ef61760195b1bff37a.tar.bz2 strongswan-957115957a805c62f80d08ef61760195b1bff37a.tar.xz