Skip site navigation (1)Skip section navigation (2)

FreeBSD Manual Pages

  
 
  

home | help 
IPSEC_ADDCONN(8)	      Executable programs	      IPSEC_ADDCONN(8)

NAME
       ipsec_addconn - load a given policy into	the pluto IKE daemon

SYNOPSIS

       ipsec addconn --configsetup [--rootdir dir] [--config filename]
	     [--ctlbase	socketfile] [--verbose]	[--noexport] [--warningsfatal]

       ipsec addconn --liststack [--rootdir dir] [--config filename]
	     [--ctlbase	socketfile] [--verbose]	[--noexport] [--warningsfatal]

       ipsec addconn --checkconfig [--rootdir dir] [--config filename]
	     [--ctlbase	socketfile] [--verbose]	[--warningsfatal]

       ipsec addconn --autoall [--rootdir dir] [--config filename]
	     [--ctlbase	socketfile] [--verbose]	[--warningsfatal]

       ipsec addconn [--rootdir	dir] [--config filename]
	     [--ctlbase	socketfile] [--verbose]	[--warningsfatal] name1
	     [name2 ..]

       ipsec addconn [--listall] [--liststart] [--listroute] [--listadd]
	     [--listignore] [--rootdir dir] [--config filename]
	     [--ctlbase	socketfile] [--verbose]	[--warningsfatal]

       ipsec addconn --help

DESCRIPTION
       ipsec addconn takes a config file (or stdin) containing the format of
       ipsec.conf, or the format of individual "conn" sections,	and uses that
       information to load named or all	connections defined in that
       configuration file into the running libreswan pluto IKE daemon. If no
       configuration file is specified,	the default configuration file is
       used. If	no pluto socket	is specified, the default socket location will
       be used.

       When --addall is	used, all connections defined in the config file will
       be operated on. Otherwise, only the specified connection	names will be
       affected.

       When addcon is run, connections that have the auto= option set to add,
       start or	route will be loaded, routed or	initiated. If a	connection was
       loaded or initiated already, it will be replaced.

       When --configsetup is specified,	the configuration file is parsed for
       the config setup	section	and printed to the terminal usable as a	shell
       script. These are prefaced with export unless --noexport	is specified.

       When --checkconfig is specified,	the configuration file is parsed and
       all sections are	checked	for correct syntax. If an error	is found,
       information about it is printed to the terminal.

       When --listroute	or --liststart is specified, no	connections are	added
       or replaced, only shown.	This command can be used to verify which
       connections the addcon command would act	upon, without actually
       performing any action.

HISTORY
       Man page	written	for the	Libreswan project <https://libreswan.org/> by
       Paul Wouters

AUTHOR
       Paul Wouters
	   placeholder to suppress warning

libreswan			  05/13/2025		      IPSEC_ADDCONN(8)

Want to link to this manual page? Use this URL:
<https://man.freebsd.org/cgi/man.cgi?query=ipsec_addconn&sektion=8&manpath=FreeBSD+Ports+14.3.quarterly>

home | help