Now, before we configure our first tunnel, we have two tests that we can run to confirm that our setup should work if we configure it correctly. First we start Openswan, which is unfortunately rather distribution specific. See the following table:
We can now run our first pre-flight check command: ipsec
verify
. This command will check a few basic settings of the Linux kernel and its network configuration.
# ipsec verify Checking your system to see if IPsec got installed and started correctly: Version check and ipsec on-path [OK] Linux Openswan 2.2.0dr4 (klips) Checking for IPsec support in kernel [OK] Checking for RSA private key (/etc/ipsec.secrets) [OK] Checking that pluto is running [OK] Two or more interfaces found, checking IP forwarding [OK] Checking NAT and MASQUERADEing [N/A] Checking for 'ip' command [OK] Checking for 'iptables' command [OK] Opportunistic Encryption DNS checks: Looking...