Test sql/ip-pool-db
Description
The roadwarriors carol and dave set up a connection each
to gateway moon. The authentication is based on X.509 certificates.
Both carol and dave request a virtual IP via the IKEv2 configuration
payload. The gateway moon assigns virtual IP addresses from a pool named bigpool
predefined in the SQL database.
moon also provides the roadwarriors with up to two DNS and NBNS server addresses
that can be registered in the SQL database by commands of the form ipsec --add dns
--server 192.168.0.150.
Upon the successful establishment of the IPsec tunnels, automatically inserted
iptables-based firewall rules let pass the tunneled traffic.
In order to test both tunnel and firewall, both carol and dave ping
the client alice behind the gateway moon.
moon
carol
dave
|