IPSEC_PF_KEY

Section: Executable programs (8)
Updated: 02/01/2019
Page Index
 

NAME

ipsec_pf_key - shows pfkey messages emitted by the kernel when using the KLIPS or MAST stack.  

SYNOPSIS

pf_key --ah --esp --ipip --ipcomp --daemon filehmac-md5-96 | hmac-sha1-96
 

STACK

Note that pf_key is only supported on the KLIPS and MAST stacks. It is not supported on any other stack.  

DESCRIPTION

pf_key is a program to open a PF_KEY socket and print all messages that are received from it. With no options, it will register itself to receive key requests for AH, ESP, IPIP and IPCOMP security associations. If given more specific options, then it will listen only to those protocols that are listed.

If the messages are recognized, the messages will be decoded.

If the option --daemon is provided, then after doing the registrations, the program will fork into the background. The provided file will be opened and the process ID of the background process will be written to it. This option is present to present race conditions in regression testing.  

FILES

/proc/net/pf_key  

SEE ALSO

pf_key(5), ipsec(8), ipsec_eroute(5), ipsec_spi(5), ipsec_spigrp(5), ipsec_klipsdebug(5), ipsec_tncfg(8), ipsec_version(5)  

HISTORY

Written for the Linux FreeS/WAN project <m[blue]http://www.freeswan.org/m[]> by Michael Richardson <mcr@freeswan.org>  

AUTHOR

Paul Wouters

placeholder to suppress warning


 

Index

NAME
SYNOPSIS
STACK
DESCRIPTION
FILES
SEE ALSO
HISTORY
AUTHOR