The roadwarrior carol sets up a connection to gateway moon.
At the outset the gateway authenticates itself to the client by sending
an IKEv2 RSA signature accompanied by a certificate.
carol then uses the Extensible Authentication Protocol
in association with a GSM Subscriber Identity Module
(EAP-SIM) to authenticate against the gateway moon.
In this scenario triplets from the file /etc/ipsec.d/triplets.dat
are used instead of a physical SIM card on the client carol and
the gateway forwards all EAP messages to the RADIUS server alice
which also uses static triplets. In addition to her IKEv2 identity
firstname.lastname@example.org, roadwarrior carol uses the EAP