Package “libreswan” has 39 man pages.
ipsec.conf(5) The ipsec.conf file specifies most configuration and control information for the Libreswan IPsec subsystem. (The major exception is secrets for authentication... ipsec_eroute(5) /proc/net/ipsec_eroute lists the IPSEC extended routing tables, which control what (if any) processing is applied to non-encrypted packets arriving for IPSEC... ipsec_klipsdebug(5) /proc/net/ipsec_klipsdebug lists flags that control various parts of the debugging output of KLIPS and MAST, two of the IPsec stacks supported by Libreswan. At... ipsec_pf_key(5) /proc/net/pf_key is a read-only file which lists the presently open PF_KEY sockets on the local system and their parameters. Each line lists one PF_KEY socket... ipsec.secrets(5) The file ipsec.secrets contains a list of secrets. Currently supported secrets are preshared secrets (PSKs), RSA keys and XAUTH passwords. These secrets are... ipsec_spi(5) /proc/net/ipsec_spi is a read-only file that lists the current IPSEC Security Associations. A Security Association (SA) is a transform through which packet... ipsec_spigrp(5) /proc/net/ipsec_spigrp is a read-only file that lists groups of IPSEC Security Associations (SAs). An entry in the IPSEC extended routing table can only point... ipsec_tncfg(5) /proc/net/ipsec_tncfg is a read-only file which lists which IPSEC virtual interfaces are attached to which real interfaces, through which packets will be... ipsec_trap_count(5) /proc/net/ipsec/stats/trap_count is a read-only file. It contains a hexadecimal number which records the number of attempts to send PF_ACQUIRE messages. Only... ipsec_trap_sendcount(5) /proc/net/ipsec/stats/trap_sendcount is a read-only file. It contains a hexadecimal number which records the number of successful PF_ACQUIRE messages that were... ipsec_version(5) /proc/net/ipsec_version is a read-only file which lists the currently running KLIPS version information. ipsec(8) ipsec invokes any of several utilities involved in controlling the IPsec encryption/authentication system, running the specified command with the specified... ipsec_addconn(8) ipsec addconn takes a config file (or stdin) containing the format of ipsec.conf, or the format of individual "conn" sections, and uses that information to load... ipsec_auto(8) Auto manipulates automatically-keyed Libreswan IPsec connections, setting them up and shutting them down based on the information in the IPsec configuration... ipsec_barf(8) Barf outputs (on standard output) a collection of debugging information (contents of files, selections from logs, etc.) related to the IPsec... ipsec_eroute(8) Eroute manages the IPSEC extended routing tables, which control what (if any) processing is applied to non-encrypted packets arriving for IPSEC processing and... ipsec_import(8) ipsec import Import PKCS#12 files into the IPsec NSS database located at the ipsec data directory (default: /etc/ipsec.d/) ipsec__import_crl(8) _import_crl is spawned by pluto in order to add or update a CRL in the NSS database (default: /etc/ipsec.d) ipsec_initnss(8) Initnss initialises the NSS database where all private keys for RSA and certificate keypairs are stored. If already initialised, it will return an error. To... ipsec__keycensor(8) _keycensor is used by ipsec barf to process the /etc/ipsec.secrets file, removing private key info. ipsec_klipsdebug(8) Klipsdebug sets and clears flags that control various parts of the debugging output of Klips (the kernel portion of FreeS/WAN IPSEC). The form with no... ipsec_look(8) Look is used to get a quick overview of what the status of Libreswan is. It is the equivalent to running the commands ipsec eroute, ipsec spigrp, ipsec tncfg... ipsec_pf_key(8) pf_key is a program to open a PF_KEY socket and print all messages that are received from it. With no options, it will register itself to receive key requests... ipsec_pluto(8) pluto is an IKE ("IPsec Key Exchange") daemon. whack is an auxiliary program to allow requests to be made to a running pluto. pluto is used to automatically... ipsec__plutorun(8) _plutorun is called by _realsetup to configure and bring up pluto(8). It invokes pluto, and watches to makes sure that pluto is restarted if it fails, as the... ipsec_readwriteconf(8) This program reads the given ipsec.conf style configuration file, interpreting the also= options, and outputs an equivalent ipsec.conf file. The purpose of this... ipsec_rsasigkey(8) Rsasigkey generates an RSA public/private key pair, suitable for digital signatures, of (exactly) nbits bits (that is, two primes each of exactly nbits/2 bits... ipsec__secretcensor(8) _secretcensor is called by ipsec barf to process the /etc/ipsec.secrets file to remove the private key components from the file prior to revealing the contents. ipsec_setup(8) setup is called (via ipsec setup) by the system administrator to perform init system related tasks to Libreswan, such as start, stop, status, reload, etc for... ipsec_showhostkey(8) Showhostkey outputs (on standard output) a public key suitable for this host, in the format specified, using the host key information stored in the NSS... ipsec_spi(8) Spi creates and deletes IPSEC Security Associations. A Security Association (SA) is a transform through which packet contents are to be processed before being... ipsec_spigrp(8) Spigrp groups IPSEC Security Associations (SAs) together or ungroups previously grouped SAs. An entry in the IPSEC extended routing table can only point (via a... ipsec__stackmanager(8) ipsec _stackmanager is called from within the init sub-system (systemd, upstart, sysv initscripts) to bring up the Libreswan kernel component as configured via... ipsec_tncfg(8) The purpose of tncfg is to attach/detach IPsec virtual interfaces (e.g. ipsec0) to/from physical interfaces (e.g. eth0) through which packets will be forwarded... ipsec__updown(8) _updown is invoked by pluto when it has brought up a new connection. This script is used to insert the appropriate routing entries for IPsec operation on some... ipsec__updown.klips(8) _updown is invoked by pluto when it has brought up a new connection. This script is used to insert the appropriate routing entries for IPsec operation. The... ipsec__updown.netkey(8) _updown is invoked by pluto when it has brought up a new connection. This script is used to insert the appropriate routing entries for IPsec operation. The... ipsec_verify(8) The ipsec verify examines the local system for a number of common system faults and configuration mistakes.