环境:
linux ES4.5
[root.@aytel01 /].# ipsec verify学习
Checking your system to see if IPsec got installed. and started correctl.y: 健康
Version check and ip.sec on-path . [OK] 乙肝
Lin.ux Openswan U2.4.12/K2.6.9.-55.ELsmp (netkey).
Che.cking for IPsec .support in kernel [OK].
Testing against enforced SElinux mode. . [FAILED] 鲜花
.SElin.ux is running in 'enforced' mode. Since no working SElinux学习
policies exist for Openswa.n, SElinux should be. disabled..
echo "0" > /selinu.x/enforce (or edit /etc/sysconfig/seli.nux)--- 印刷
Hardware RNG detected, testing if .used pro.perly [FAILED]健康
Hardware RNG is pr.esent but 'rngd' is not runnin.g.健康
No harware rando.m used! 女人
NETKEY detected, testing for disa.bled ICMP send_redir.ects [FAILED] 健康
Please disable /pr.oc/.sys/net/ipv4/conf/*/send_redirects教育
or NETKEY will cause the. sending of bogus ICMP redirects.!外贸
NETKEY detected, testing for disabl..ed ICMP accept_redirects [OK] 电子
Checking for RSA private key (/etc/ipsec.secrets) . . [OK] 建材
Checking that pluto is running . [FA.ILED].
whack: Pluto is not .running (no "/var/run/pluto/pluto..ctl") 杀毒
Two .or more interfaces fou.nd, checking IP forwarding [FAILED] 杀毒
whack: Pluto is not r..unning (no "/var/run/pluto/pluto.ctl")电影
Checking NAT and MASQU.ERADEing . [N/A]--- 印刷
w.hack: Pluto is not running (no "/var/run/pluto/plu.to.ctl") 婚庆
Checking for 'ip' command . . [OK]域名
Checking for 'iptables' comman.d . [OK] 建材
Opportunistic Encr.yption DNS. checks: 婚庆
. Looking for TXT in forward dns zone: aytel01.localdomain. [MISSING]投资
Does the machine have at least one. non-private a.ddress? [OK].
Looking for TXT in reverse dns zo.ne: 149.93.67.193..in-addr.arpa.(广告)
