swanctl --initiate

Synopsis

swanctl --initiate [--child <name>] [--ike <name>] [--timeout <s>]

swanctl --initiate --help

Description

This swanctl subcommand initiates a CHILD or IKE Security Association.

Options

--child    (-c)  initiate a CHILD_SA configuration
--ike      (-i)  initiate an IKE_SA, or name of child's parent
--timeout  (-t)  timeout in seconds before detaching

--raw      (-r)  dump raw response message
--pretty   (-P)  dump raw response message in pretty print
--loglevel (-l)  verbosity of redirected log
--debug    (-v)  set debug level, default: 1
--options  (-+)  read command line options from file
--uri      (-u)  service URI to connect to
--help     (-h)  show usage information

Examples

Let’s assume we have an IKE SA named home with a CHILD SA named net.

Initiate the CHILD SA called net which first establishes the parent IKE SA home

$ swanctl --initiate --child net

Initiate the IKE SA home only, without installing any CHILD SA

$ swanctl --initiate --ike home