japan:~# named
japan:~# dig 2.2.0.192.in-addr.arpa. txt

; <<>> DiG 9.3.0s20021115 <<>> 2.2.0.192.in-addr.arpa. txt
;; global options:  printcmd
;; connection timed out; no servers could be reached
japan:~# dig japan.uml.freeswan.org. key

; <<>> DiG 9.3.0s20021115 <<>> japan.uml.freeswan.org. key
;; global options:  printcmd
;; connection timed out; no servers could be reached
japan:~# ipsec setup start
ipsec_setup: Starting Libreswan IPsec VERSION
japan:~# ipsec auto --add me-private-or-clear
japan:~# ipsec auto --add let-my-dns-go
japan:~# ipsec whack --listen
002 listening for IKE messages
002 adding interface ipsec0/eth0 192.0.1.2:500
002 loading secrets from "/etc/ipsec.secrets"
japan:~# ipsec auto --route me-private-or-clear
021 no connection named "me-private-or-clear"
japan:~# ipsec auto --route let-my-dns-go
021 no connection named "let-my-dns-go"
japan:~# ipsec eroute
japan:~# ipsec whack --oppohere 192.0.1.2 --oppothere 192.1.2.23
033 Can't Opportunistically initiate for 192.0.1.2 to 192.1.2.23: no routed template covers this pair
japan:~# ping -c 4 -n 192.1.2.23
PING 192.1.2.23 (192.1.2.23): 56 data bytes

--- 192.1.2.23 ping statistics ---
4 packets transmitted, 0 packets received, 100% packet loss
japan:~# ipsec eroute
japan:~# ipsec auto --status
000 interface ipsec0/eth0 192.0.1.2
000 %myid = (none)
000 debug none
000  
000 algorithm ESP encrypt: id=3, name=ESP_3DES, ivlen=64, keysizemin=192, keysizemax=192
000 algorithm ESP encrypt: id=12, name=ESP_AES, ivlen=128, keysizemin=128, keysizemax=256
000 algorithm ESP auth attr: id=1, name=AUTH_ALGORITHM_HMAC_MD5, keysizemin=128, keysizemax=128
000 algorithm ESP auth attr: id=2, name=AUTH_ALGORITHM_HMAC_SHA1, keysizemin=160, keysizemax=160
000 algorithm ESP auth attr: id=9, name=AUTH_ALGORITHM_AES_CBC, keysizemin=128, keysizemax=128
000  
000 algorithm IKE encrypt: id=5, name=OAKLEY_3DES_CBC, blocksize=8, keydeflen=192
000 algorithm IKE encrypt: id=7, name=OAKLEY_AES_CBC, blocksize=16, keydeflen=128
000 algorithm IKE hash: id=1, name=OAKLEY_MD5, hashsize=16
000 algorithm IKE hash: id=2, name=OAKLEY_SHA1, hashsize=20
000 algorithm IKE dh group: id=2, name=OAKLEY_GROUP_MODP1024, bits=1024
000 algorithm IKE dh group: id=5, name=OAKLEY_GROUP_MODP1536, bits=1536
000 algorithm IKE dh group: id=14, name=OAKLEY_GROUP_MODP2048, bits=2048
000 algorithm IKE dh group: id=15, name=OAKLEY_GROUP_MODP3072, bits=3072
000 algorithm IKE dh group: id=16, name=OAKLEY_GROUP_MODP4096, bits=4096
000 algorithm IKE dh group: id=17, name=OAKLEY_GROUP_MODP6144, bits=6144
000 algorithm IKE dh group: id=18, name=OAKLEY_GROUP_MODP8192, bits=8192
000  
000 stats db_ops.c: {curr_cnt, total_cnt, maxsz} :context={0,0,0} trans={0,0,0} attrs={0,0,0} 
000  
000  
000  
japan:~# 

japan:~# ipsec setup stop
IPSEC EVENT: KLIPS device ipsec0 shut down.
ipsec_setup: Stopping Libreswan IPsec...
japan:~# kill `cat /var/run/klogd.pid`; cat /tmp/klog.log
klogd 1.3-3#33.1, log source = /proc/kmsg started.
japan:~# halt -p -f
Power down.