Starting UML PATH/start.sh spawn PATH single Checking PROT_EXEC mmap in /tmp...OK Linux version XXXX Built 1 zonelists Kernel command line: PID hash table entries: 256 (order: 8, 4096 bytes) Dentry-cache hash table entries: NUMBERS Inode-cache hash table entries: NUMBERS Mount-cache hash table entries: NUMBERS Checking syscall emulation patch for ptrace...missing NET: Registered protocol family 16 VFS: Diskquotas version dquot_6.4.0 initialized Dquot-cache hash table entries: 1024 (order 0, 4096 bytes) devfs: 2004-01-31 Richard Gooch (rgooch@atnf.csiro.au) devfs: boot_options Q Initializing Cryptographic API io scheduler noop registered io scheduler anticipatory registered io scheduler deadline registered io scheduler cfq registered loop: loaded (max 8 devices) nbd: registered device at major 43 PPP generic driver version VERSION SLIP: version 0.8.4-NET3.019-NEWTTY (dynamic channels, max=256). tun: Universal TUN/TAP device driver VERSION tun: (C) 1999-2004 Max Krasnyansky NET: Registered protocol family 2 IP: routing cache hash table of 512 buckets, 4Kbytes TCP established hash table entries: 2048 (order: 2, 16384 bytes) TCP bind hash table entries: 2048 (order: 1, 8192 bytes) TCP: Hash tables configured (established 2048 bind 2048) IPv4 over IPv4 tunneling driver GRE over IPv4 tunneling driver NET: Registered protocol family 1 NET: Registered protocol family 17 Initialized stdio console driver Console initialized on /dev/tty0 Mounted devfs on /dev line_ioctl: tty0: ioctl KDSIGACCEPT called INIT: version 2.78 booting Activating swap... Checking all file systems... Parallelizing fsck version 1.18 (11-Nov-1999) Setting kernel variables. Mounting local filesystems... /dev/shm on /tmp type tmpfs (rw) /dev/shm on /var/run type tmpfs (rw) devpts on /dev/pts type devpts (rw,mode=0622) none on /usr/share type hostfs (ro) Enabling packet forwarding: done. Configuring network interfaces: done. Cleaning: /tmp /var/lock /var/run. Initializing random number generator... done. Recovering nvi editor sessions... done. Give root password for maintenance (or type Control-D for normal startup): east:~# klogd -c 4 -x -f /tmp/klog.log east:~# TZ=GMT export TZ east:~# ipsec spi --clear east:~# ipsec eroute --clear east:~# enckey=0x4043434545464649494a4a4c4c4f4f515152525454575758 east:~# authkey=0x8765876587658765876587658765876587658765 east:~# ipsec spi --af inet --edst 192.1.2.45 --spi 0xD1234567 --proto esp --src 192.1.2.23 --esp 3des-sha1-96 --enckey $enckey --authkey $authkey east:~# ipsec spi --af inet --edst 192.1.2.45 --spi 0xD1234567 --proto tun --src 192.1.2.23 --dst 192.1.2.45 --ip4 east:~# ipsec spigrp inet 192.1.2.45 0xD1234567 tun inet 192.1.2.45 0xD1234567 esp east:~# ipsec eroute --add --eraf inet --src 192.0.2.0/24 --dst 192.0.1.0/24 --said tun0xD1234567@192.1.2.45 east:~# ipsec tncfg --attach --virtual ipsec0 --physical eth1 east:~# ifconfig ipsec0 inet 192.1.2.23 netmask 0xffffff00 broadcast 192.1.2.255 up east:~# arp -s 192.1.2.45 10:00:00:64:64:45 east:~# arp -s 192.1.2.254 10:00:00:64:64:45 east:~# ipsec look east NOW 192.0.2.0/24 -> 192.0.1.0/24 => tun0xd1234567@192.1.2.45 esp0xd1234567@192.1.2.45 (0) ipsec0->eth1 mtu=16260(1500)->1500 esp0xd1234567@192.1.2.45 ESP_3DES_HMAC_SHA1: dir=out src=192.1.2.23 iv_bits=64bits iv=0xDEADF00DDEADF00D alen=160 aklen=160 eklen=192 life(c,s,h)= natencap=none natsport=0 natdport=0 refcount=4 ref=2 tun0xd1234567@192.1.2.45 IPIP: dir=out src=192.1.2.23 life(c,s,h)= natencap=none natsport=0 natdport=0 refcount=4 ref=3 ROUTING TABLE east:~# route add -host 192.0.1.1 gw 192.1.2.45 dev ipsec0 east:~# ipsec setup stop IPSEC EVENT: KLIPS device ipsec0 shut down. ipsec_setup: Stopping Libreswan IPsec... ipsec_setup: stop ordered, but IPsec appears to be already stopped! ipsec_setup: doing cleanup anyway... east:~# kill `cat /var/run/klogd.pid`; cat /tmp/klog.log klogd 1.3-3#33.1, log source = /proc/kmsg started. east:~# halt -p -f Power down.