Re: [Ipsec-tools-devel] auto SA
Brought to you by:
mit_warlord,
netbsd
From: <ma...@ne...> - 2004-10-24 13:29:38
|
Emmanuel Dreyfus <ma...@ne...> wrote: > In fact we need a way to tell racoon it should start or stop a SA. This > advocates for a raconnctl tool that would talk with racoon on a local > socket. I immagine something like this: > > racoonctl connect 192.0.2.12 > racoonctl disconnect 192.0.2.12 > > If racoon is not running, "racoonctl connect" would fork and launch it. > > racoonctl could read racoon.conf to find the socket location. In fact racoonctl could be a hard link to racoon, and we'd just have to choose our behavior depending of argv[0]. That way, we can avoid duplicating the configuration file management code, and racoonctl could never be out of sync with racoon. -- Emmanuel Dreyfus Il y a 10 sortes de personnes dans le monde: ceux qui comprennent le binaire et ceux qui ne le comprennent pas. ma...@ne... |