testing: Add a connmark plugin test
authorMartin Willi <martin@revosec.ch>
Tue, 18 Nov 2014 10:33:28 +0000 (11:33 +0100)
committerMartin Willi <martin@revosec.ch>
Fri, 20 Feb 2015 15:34:54 +0000 (16:34 +0100)
testing: Add a connmark plugin test

In this test two hosts establish a transport mode connection from behind
moon. sun uses the connmark plugin to distinguish the flows.

This is an example that shows how one can terminate L2TP/IPsec connections
from two hosts behind the same NAT. For simplification of the test, we use
an SSH connection instead, but this works for any connection initiated flow
that conntrack can track.
testing/tests/ikev2/host2host-transport-connmark/description.txt [new file with mode: 0644]
testing/tests/ikev2/host2host-transport-connmark/evaltest.dat [new file with mode: 0644]
testing/tests/ikev2/host2host-transport-connmark/hosts/alice/etc/ipsec.conf [new file with mode: 0644]
testing/tests/ikev2/host2host-transport-connmark/hosts/sun/etc/ipsec.conf [new file with mode: 0644]
testing/tests/ikev2/host2host-transport-connmark/hosts/sun/etc/strongswan.conf [new file with mode: 0644]
testing/tests/ikev2/host2host-transport-connmark/hosts/venus/etc/ipsec.conf [new file with mode: 0644]
testing/tests/ikev2/host2host-transport-connmark/posttest.dat [new file with mode: 0644]
testing/tests/ikev2/host2host-transport-connmark/pretest.dat [new file with mode: 0644]
testing/tests/ikev2/host2host-transport-connmark/test.conf [new file with mode: 0644]