_STACKMANAGER

Section: Executable programs (8)
Updated: 02/03/2021
Page Index
 

NAME

ipsec__stackmanager - internal script to bring up kernel components for Libreswan  

SYNOPSIS

ipsec _stackmanager start [--xfrm]
ipsec _stackmanager stop
 

DESCRIPTION

ipsec _stackmanager

is called from within the init sub-system (systemd, upstart, sysv initscripts) to bring up the Libreswan kernel component as configured via the protostack= option in the ipsec.conf configuration file.

This involves loading and optionally unloading of the required kernel modules. Because the Linux kernel cannot autodetect most crypto related drivers on-demand, _stackmanager handles loading the modules for the specific IPsec stack.

When the --xfrm option is given to the start command, the XFRM stack is loaded regardless of the existence or contents of the ipsec.conf file. This is used for docker tests where the host system, which might not have libreswan installed, needs to run _stackmanager from the source tree to load the modules on the host so the modules are available inside the containers.  

SEE ALSO

ip(8), ipsec_tncfg(8), ipsec.conf(5), ipsec_addconn(8), pluto(8)  

HISTORY

This script was introduced in Libreswan. On the older Openswan systems, this functionality was split over various script files such as ipsec _startnetkey, ipsec _startklips, ipsec _realsetup and ipsec setup. Man page written for the Libreswan project <m[blue]https://libreswan.org/m[]> by Paul Wouters.  

AUTHOR

Paul Wouters

placeholder to suppress warning


 

Index

NAME
SYNOPSIS
DESCRIPTION
SEE ALSO
HISTORY
AUTHOR