Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

ipsec_barf(8) [debian man page]

IPSEC_BARF(8)							  [FIXME: manual]						     IPSEC_BARF(8)

NAME

       ipsec_barf - spew out collected IPsec debugging information

SYNOPSIS

       ipsec barf [--short --maxlines <100>]

DESCRIPTION

       Barf outputs (on standard output) a collection of debugging information (contents of files, selections from logs, etc.) related to the
       IPsec encryption/authentication system. It is primarily a convenience for remote debugging, a single command which packages up (and labels)
       all information that might be relevant to diagnosing a problem in IPsec.

       The --short option limits the length of the log portion of barf's output, which can otherwise be extremely voluminous if debug logging is
       turned on.

       --maxlines <100> option sets the length of some bits of information, currently netstat -rn. Useful on boxes where the routing table is
       thousands of lines long. Default is 100.

       Barf censors its output, replacing keys and secrets with brief checksums to avoid revealing sensitive information.

       Beware that the output of both commands is aimed at humans, not programs, and the output format is subject to change without warning.

       Barf has to figure out which files in /var/log contain the IPsec log messages. It looks for KLIPS and general log messages first in
       messages and syslog, and for Pluto messages first in secure, auth.log, and debug. In both cases, if it does not find what it is looking for
       in one of those "likely" places, it will resort to a brute-force search of most (non-compressed) files in /var/log.

FILES

	   /proc/net/*
	   /var/log/*
	   /etc/ipsec.conf
	   /etc/ipsec.secrets

HISTORY

       Written for the Linux FreeS/WAN project <http://www.freeswan.org> by Henry Spencer.

BUGS

       Barf uses heuristics to try to pick relevant material out of the logs, and relevant messages which are not labelled with any of the tags
       that barf looks for will be lost. We think we've eliminated the last such case, but one never knows...

       Finding updown scripts (so they can be included in output) is, in general, difficult.  Barf uses a very simple heuristic that is easily
       fooled.

       The brute-force search for the right log files can get expensive on systems with a lot of clutter in /var/log.

[FIXME: source] 						   17 March 2002						     IPSEC_BARF(8)

Check Out this Related Man Page

IPSEC(8)							Executable programs							  IPSEC(8)

NAME

       ipsec - invoke IPsec utilities

SYNOPSIS

       ipsec command [argument...] ipsec --help
	     ipsec --version
	     ipsec --versioncode
	     ipsec --copyright
	     ipsec --directory
	     ipsec --confdir

DESCRIPTION

       Ipsec invokes any of several utilities involved in controlling the IPsec encryption/authentication system, running the specified command
       with the specified arguments as if it had been invoked directly. This largely eliminates possible name collisions with other software, and
       also permits some centralized services.

       ipsec --help lists the available commands. Most have their own manual pages, e.g.  ipsec_auto(8) for auto.

       ipsec --version outputs version information about Linux FreeS/WAN. A version code of the form ``Uxxx/Kyyy'' indicates that the user-level
       utilities are version xxx but the kernel portion appears to be version yyy (this form is used only if the two disagree).

       ipsec --versioncode outputs just the version code, with none of --version's supporting information, for use by scripts.

       ipsec --copyright supplies boring copyright details.

       ipsec --directory reports where ipsec thinks the IPsec utilities are stored.

       ipsec --confdir reports where ipsec thinks the IPsec configuration files are stored.

FILES

       /usr/local/lib/ipsec usual utilities directory

SEE ALSO

       ipsec.conf(5), ipsec.secrets(5), ipsec_auto(8), ipsec_barf(8), ipsec_setup(8), ipsec_showhostkey(8)

       HTML documentation shipped with the release, starting with doc/index.html.  <http://www.freeswan.org/doc.html> may also be of use.

HISTORY

       Written for Linux FreeS/WAN <http://www.freeswan.org> by Henry Spencer.

BUGS

       The provision of centralized services, while convenient, does compromise the original concept of making the utilities invocable directly as
       well as via ipsec.

AUTHOR

       Paul Wouters
	   placeholder to suppress warning

libreswan							    12/29/2012								  IPSEC(8)
Man Page