west:~#
 TESTNAME=ikev2-x509-01
west:~#
 source /testing/pluto/bin/westnlocal.sh
west:~#
 ping -n -c 4 192.0.2.254
PING 192.0.2.254 (192.0.2.254): 56 data bytes
64 bytes from 192.0.2.254: icmp_seq=0 ttl=257 time=999 ms
64 bytes from 192.0.2.254: icmp_seq=1 ttl=257 time=999 ms
64 bytes from 192.0.2.254: icmp_seq=2 ttl=257 time=999 ms
64 bytes from 192.0.2.254: icmp_seq=3 ttl=257 time=999 ms

--- 192.0.2.254 ping statistics ---
4 packets transmitted, 4 packets received, 0% packet loss
round-trip min/avg/max = 3.1/4.5/9.26 ms
west:~#
 iptables -A INPUT -i eth1 -s 192.0.2.0/24 -j DROP
west:~#
 ping -n -c 4 192.0.2.254
PING 192.0.2.254 (192.0.2.254): 56 data bytes

--- 192.0.2.254 ping statistics ---
4 packets transmitted, 0 packets received, 100% packet loss
west:~#
 ipsec setup start
ipsec_setup: Starting Libreswan IPsec VERSION
west:~#
 ipsec whack --whackrecord /var/tmp/ikev2.record
west:~#
 ipsec auto --add ikev2-westnet-eastnet-x509-cr
west:~#
 /testing/pluto/bin/wait-until-pluto-started
west:~#
 echo "done"
done
west:~#
 ipsec auto --up ikev2-westnet-eastnet-x509-cr
133 "ikev2-westnet-eastnet-x509-cr" #1: STATE_PARENT_I1: initiate
133 "ikev2-westnet-eastnet-x509-cr" #1: STATE_PARENT_I1: sent v2I1, expected v2R1
134 "ikev2-westnet-eastnet-x509-cr" #2: STATE_PARENT_I2: sent v2I2, expected v2R2 {auth=IKEv2 cipher=aes_128 integ=sha1 prf=oakley_sha group=modp2048}