mirror/setup-ipsec-vpn
1
0
Fork 0
mirror of synced 2024-11-23 05:26:02 +03:00
Code Issues Projects Releases Wiki Activity

Update tests

Browse Source
This commit is contained in:
hwdsl2 2021-01-29 10:04:09 -06:00
parent cd588a07ae
commit fd0d20ecc1
1 changed files with 96 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

101
.github/workflows/main.yml vendored
View File

@ -116,6 +116,7 @@ jobs:
ipsec status ipsec status
ipsec status | grep -q l2tp-psk ipsec status | grep -q l2tp-psk
ipsec status | grep -q xauth-psk ipsec status | grep -q xauth-psk
cat /var/log/fail2ban.log cat /var/log/fail2ban.log
grep -E "Jail '(sshd?|ssh-iptables)' started" /var/log/fail2ban.log grep -E "Jail '(sshd?|ssh-iptables)' started" /var/log/fail2ban.log
@ -181,6 +182,52 @@ jobs:
ls -ld /etc/ipsec.d/vpnclient2-*.sswan ls -ld /etc/ipsec.d/vpnclient2-*.sswan
ls -ld /etc/ipsec.d/vpnclient2-*.p12 ls -ld /etc/ipsec.d/vpnclient2-*.p12
bash ikev2.sh <<ANSWERS
3
y
ANSWERS
if [ "$1" = "centos" ] || [ "$1" = "amazon" ]; then
systemctl restart ipsec
fi
sleep 10
! ls -ld /etc/ipsec.d/ikev2.conf
ipsec status | grep -q l2tp-psk
ipsec status | grep -q xauth-psk
! ipsec status | grep -q ikev2-cp
certutil -L -d sql:/etc/ipsec.d
rm -f /etc/ipsec.d/vpnclient*
bash ikev2.sh --auto
ls -ld /etc/ipsec.d/vpnclient-*.mobileconfig
ls -ld /etc/ipsec.d/vpnclient-*.sswan
ls -ld /etc/ipsec.d/vpnclient-*.p12
if [ "$1" = "centos" ] || [ "$1" = "amazon" ]; then
systemctl restart ipsec
sleep 10
grep pluto /var/log/secure | tail -n 20
else
sleep 10
grep pluto /var/log/auth.log | tail -n 20
fi
ipsec status
ipsec status | grep -q ikev2-cp
bash ikev2.sh --addclient vpnclient2
ls -ld /etc/ipsec.d/vpnclient2-*.mobileconfig
ls -ld /etc/ipsec.d/vpnclient2-*.sswan
ls -ld /etc/ipsec.d/vpnclient2-*.p12
rm -f /etc/ipsec.d/vpnclient2-*
bash ikev2.sh --exportclient vpnclient2
ls -ld /etc/ipsec.d/vpnclient2-*.mobileconfig
ls -ld /etc/ipsec.d/vpnclient2-*.sswan
ls -ld /etc/ipsec.d/vpnclient2-*.p12
if [ "$1" = "centos" ] || [ "$1" = "amazon" ]; then if [ "$1" = "centos" ] || [ "$1" = "amazon" ]; then
sed -i '/pluto/d' /var/log/secure sed -i '/pluto/d' /var/log/secure
pkill -HUP rsyslog pkill -HUP rsyslog
@ -240,8 +287,7 @@ jobs:
ipsec status | grep -q xauth-psk ipsec status | grep -q xauth-psk
ipsec status | grep -q ikev2-cp ipsec status | grep -q ikev2-cp
bash ikev2.sh <<ANSWERS bash ikev2.sh --removeikev2 <<ANSWERS
3
y y
ANSWERS ANSWERS
@ -358,6 +404,7 @@ jobs:
ipsec status ipsec status
ipsec status | grep -q l2tp-psk ipsec status | grep -q l2tp-psk
ipsec status | grep -q xauth-psk ipsec status | grep -q xauth-psk
cat /var/log/fail2ban.log cat /var/log/fail2ban.log
grep -E "Jail '(sshd?|ssh-iptables)' started" /var/log/fail2ban.log grep -E "Jail '(sshd?|ssh-iptables)' started" /var/log/fail2ban.log
@ -374,7 +421,15 @@ jobs:
wget -t 3 -T 30 -nv -O ikev2.sh https://github.com/hwdsl2/setup-ipsec-vpn/raw/master/extras/ikev2setup.sh wget -t 3 -T 30 -nv -O ikev2.sh https://github.com/hwdsl2/setup-ipsec-vpn/raw/master/extras/ikev2setup.sh
sed -i '/swan_ver_latest=/s/^/#/' ikev2.sh sed -i '/swan_ver_latest=/s/^/#/' ikev2.sh
bash ikev2.sh --auto bash ikev2.sh <<ANSWERS
y
ANSWERS
ls -ld /etc/ipsec.d/vpnclient-*.mobileconfig ls -ld /etc/ipsec.d/vpnclient-*.mobileconfig
ls -ld /etc/ipsec.d/vpnclient-*.sswan ls -ld /etc/ipsec.d/vpnclient-*.sswan
@ -406,6 +461,42 @@ jobs:
ls -ld /etc/ipsec.d/vpnclient2-*.sswan ls -ld /etc/ipsec.d/vpnclient2-*.sswan
ls -ld /etc/ipsec.d/vpnclient2-*.p12 ls -ld /etc/ipsec.d/vpnclient2-*.p12
bash ikev2.sh <<ANSWERS
3
y
ANSWERS
sleep 10
! ls -ld /etc/ipsec.d/ikev2.conf
ipsec status | grep -q l2tp-psk
ipsec status | grep -q xauth-psk
! ipsec status | grep -q ikev2-cp
certutil -L -d sql:/etc/ipsec.d
rm -f /etc/ipsec.d/vpnclient*
bash ikev2.sh --auto
ls -ld /etc/ipsec.d/vpnclient-*.mobileconfig
ls -ld /etc/ipsec.d/vpnclient-*.sswan
ls -ld /etc/ipsec.d/vpnclient-*.p12
sleep 10
grep pluto /var/log/auth.log | tail -n 20
ipsec status
ipsec status | grep -q ikev2-cp
bash ikev2.sh --addclient vpnclient2
ls -ld /etc/ipsec.d/vpnclient2-*.mobileconfig
ls -ld /etc/ipsec.d/vpnclient2-*.sswan
ls -ld /etc/ipsec.d/vpnclient2-*.p12
rm -f /etc/ipsec.d/vpnclient2-*
bash ikev2.sh --exportclient vpnclient2
ls -ld /etc/ipsec.d/vpnclient2-*.mobileconfig
ls -ld /etc/ipsec.d/vpnclient2-*.sswan
ls -ld /etc/ipsec.d/vpnclient2-*.p12
sed -i '/pluto/d' /var/log/auth.log sed -i '/pluto/d' /var/log/auth.log
pkill -HUP rsyslog pkill -HUP rsyslog
@ -439,11 +530,11 @@ jobs:
ipsec status | grep -q xauth-psk ipsec status | grep -q xauth-psk
ipsec status | grep -q ikev2-cp ipsec status | grep -q ikev2-cp
bash ikev2.sh <<ANSWERS bash ikev2.sh --removeikev2 <<ANSWERS
3
y y
ANSWERS ANSWERS
sleep 10
! ls -ld /etc/ipsec.d/ikev2.conf ! ls -ld /etc/ipsec.d/ikev2.conf
ipsec status | grep -q l2tp-psk ipsec status | grep -q l2tp-psk
ipsec status | grep -q xauth-psk ipsec status | grep -q xauth-psk