SYNOPSIS
- ipsec verify [--host name]
DESCRIPTION
In addition, verify performs checks relevant to Opportunistic Encryption. It looks in forward DNS for a TXT record for the system's hostname, and in reverse DNS for a TXT record for the system's IP addresses. It checks whether the system has a public IP.
The --host option causes verify to look for a TXT record for name in forward and reverse DNS.
FILES
-
/proc/net/ipsec_eroute /etc/ipsec.secrets
HISTORY
Written for the Linux FreeS/WAN project <m[blue]http://www.freeswan.orgm[]> by Michael Richardson.
BUGS
Verify does not check for ipchains masquerading.
Verify does not look for TXT records for Opportunistic clients behind the system.