Crates.io | swan-updown |
lib.rs | swan-updown |
version | 0.3.1 |
source | src |
created_at | 2023-03-06 07:50:07.331485 |
updated_at | 2024-04-19 08:06:21.014602 |
description | swan-updown helps create ipsec interfaces |
homepage | https://github.com/6-6-6/swan-updown |
repository | https://github.com/6-6-6/swan-updown |
max_upload_size | |
id | 802266 |
size | 49,974 |
see updown plugin.
First, it parses PLUTO_*
and cli args.
Then it helps create ipsec interfaces on demand and log to syslog.
To utilize swan-updown
, specify
connections.<conn>.children.<child>.updown = swan-updown [OPTIONS]
in swanctl.conf
For its arguments, see swan-updown -h
.
# swan-updown -h
swan-updown helps create ipsec interfaces
Usage: swan-updown [OPTIONS]
Options:
-p, --prefix <prefix> the prefix of the created interfaces, default to [swan]
-n, --netns <netns> Optional network namespace to move interfaces into
-m, --master <master> Optional master device to assign interfaces to
--to-stdout send log to stdout, otherwise the log will be sent to syslog
-d, --debug... set it multiple times to increase log level, [0: Error, 1: Warn, 2: Info, 3: Debug]
-h, --help Print help
-V, --version Print version
By default swan-updown
uses syslog
, if you want it to use env_logger
, please specify --to-stdout
.
It will [create / destroy] XFRM interface when an SA is [established / deleted].
The name of the interface will be {prefix}{hex encoded if_id}
.
The prefix
can be specified by --prefix
argument and the if_id
is the PLUTO_IF_ID_IN
environment variable.
swan-updown
also adds altnames to the interface. The altnames will show
Additionally, if --netns
is specified, the created interface will be moved into the given netns.