cjac · April 27, 2020 17:31
diff --git a/gistfile1.txt b/gistfile1.txt
 cjac@edge:~$ sudo ipsec statusall edge
 Status of IKE charon daemon (strongSwan 5.7.2, Linux 5.4.0-0.bpo.4-amd64, x86_64):
  uptime: 110 minutes, since Apr 27 08:40:35 2020
  malloc: sbrk 3067904, mmap 0, used 1166816, free 1901088
  worker threads: 11 of 16 idle, 5/0/0/0 working, job queue: 0/0/0/0, scheduled: 1
  loaded plugins: charon test-vectors ldap pkcs11 tpm aesni aes rc2 sha2 sha1 md5 mgf1 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey pem openssl gcrypt af-alg fips-prf gmp curve25519 agent chapoly xcbc cmac hmac ctr ccm gcm curl attr kernel-netlink resolve socket-default connmark farp stroke vici updown eap-identity eap-aka eap-md5 eap-gtc eap-mschapv2 eap-radius eap-tls eap-ttls eap-tnc xauth-generic xauth-eap xauth-pam tnc-tnccs dhcp lookip error-notify certexpire led addrblock unity counters
 Listening IP addresses:
  74.120.12.135
  2607:ff08:f5:7::5
  2607:ff08:f5:3a::1
  100.65.12.1
  2607:ff08:f5:3a::1
  100.66.79.1
 Connections:
        edge:  74.120.12.135...%any  IKEv1/2
        edge:   local:  [edge.colliertech.org] uses public key authentication
        edge:   remote: [wanjet1.colliertech.org] uses public key authentication
        edge:   child:  100.65.12.1/32 === 100.64.79.1/32 TUNNEL
        edge:  %any...73.19.0.71  IKEv1/2
        edge:   local:  [edge.colliertech.org] uses pre-shared key authentication
        edge:   remote: [wanjet1.colliertech.org] uses pre-shared key authentication
        edge:   child:  100.65.12.1/32 === 100.64.79.1/32 TUNNEL
 Routed Connections:
        edge{1}:  ROUTED, TUNNEL, reqid 1
        edge{1}:   100.65.12.1/32 === 100.64.79.1/32
 Security Associations (0 up, 1 connecting):
        edge[2]: CONNECTING, 74.120.12.135[%any]...73.19.0.71[%any]
        edge[2]: IKEv2 SPIs: 29c06c4f806dc93f_i* 0000000000000000_r
        edge[2]: Tasks active: IKE_VENDOR IKE_INIT IKE_NATD IKE_CERT_PRE IKE_AUTH IKE_CERT_POST IKE_CONFIG CHILD_CREATE IKE_AUTH_LIFETIME IKE_MOBIKE
	cjac@edge:~$ sudo ipsec statusall edge
	Status of IKE charon daemon (strongSwan 5.7.2, Linux 5.4.0-0.bpo.4-amd64, x86_64):
	uptime: 110 minutes, since Apr 27 08:40:35 2020
	malloc: sbrk 3067904, mmap 0, used 1166816, free 1901088
	worker threads: 11 of 16 idle, 5/0/0/0 working, job queue: 0/0/0/0, scheduled: 1
	loaded plugins: charon test-vectors ldap pkcs11 tpm aesni aes rc2 sha2 sha1 md5 mgf1 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey pem openssl gcrypt af-alg fips-prf gmp curve25519 agent chapoly xcbc cmac hmac ctr ccm gcm curl attr kernel-netlink resolve socket-default connmark farp stroke vici updown eap-identity eap-aka eap-md5 eap-gtc eap-mschapv2 eap-radius eap-tls eap-ttls eap-tnc xauth-generic xauth-eap xauth-pam tnc-tnccs dhcp lookip error-notify certexpire led addrblock unity counters
	Listening IP addresses:
	74.120.12.135
	2607:ff08:f5:7::5
	2607:ff08:f5:3a::1
	100.65.12.1
	2607:ff08:f5:3a::1
	100.66.79.1
	Connections:
	edge: 74.120.12.135...%any IKEv1/2
	edge: local: [edge.colliertech.org] uses public key authentication
	edge: remote: [wanjet1.colliertech.org] uses public key authentication
	edge: child: 100.65.12.1/32 === 100.64.79.1/32 TUNNEL
	edge: %any...73.19.0.71 IKEv1/2
	edge: local: [edge.colliertech.org] uses pre-shared key authentication
	edge: remote: [wanjet1.colliertech.org] uses pre-shared key authentication
	edge: child: 100.65.12.1/32 === 100.64.79.1/32 TUNNEL
	Routed Connections:
	edge{1}: ROUTED, TUNNEL, reqid 1
	edge{1}: 100.65.12.1/32 === 100.64.79.1/32
	Security Associations (0 up, 1 connecting):
	edge[2]: CONNECTING, 74.120.12.135[%any]...73.19.0.71[%any]
	edge[2]: IKEv2 SPIs: 29c06c4f806dc93f_i* 0000000000000000_r
	edge[2]: Tasks active: IKE_VENDOR IKE_INIT IKE_NATD IKE_CERT_PRE IKE_AUTH IKE_CERT_POST IKE_CONFIG CHILD_CREATE IKE_AUTH_LIFETIME IKE_MOBIKE