conf/plugins/load-tester.opt


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132

charon.plugins.load-tester {}
	Section to configure the load-tester plugin, see LOAD TESTS in
	**strongswan.conf**(5) for details.

charon.plugins.load-tester.addrs {}
	Section that contains key/value pairs with address pools (in CIDR notation)
	to use for a specific network interface e.g. eth0 = 10.10.0.0/16.

charon.plugins.load-tester.addrs_keep = no
	Whether to keep dynamic addresses even after the associated SA got
	terminated.

charon.plugins.load-tester.addrs_prefix = 16
	Network prefix length to use when installing dynamic addresses.
	If set to -1 the full address is used (i.e. 32 or 128).

charon.plugins.load-tester.ca_dir =
	Directory to load (intermediate) CA certificates from.

charon.plugins.load-tester.child_rekey = 600
	Seconds to start CHILD_SA rekeying after setup.

charon.plugins.load-tester.crl
	URI to a CRL to include as certificate distribution point in generated
	certificates.

charon.plugins.load-tester.delay = 0
	Delay between initiatons for each thread.

charon.plugins.load-tester.delete_after_established = no
	Delete an IKE_SA as soon as it has been established.

charon.plugins.load-tester.digest = sha1
	Digest algorithm used when issuing certificates.

charon.plugins.load-tester.dpd_delay = 0
	DPD delay to use in load test.

charon.plugins.load-tester.dynamic_port = 0
	Base port to be used for requests (each client uses a different port).

charon.plugins.load-tester.eap_password = default-pwd
	EAP secret to use in load test.

charon.plugins.load-tester.enable = no
	Enable the load testing plugin. **WARNING**: Never enable this plugin on
	productive systems. It provides preconfigured credentials and allows an
	attacker to authenticate as any user.

charon.plugins.load-tester.esp = aes128-sha1
	CHILD_SA proposal to use for load tests.

charon.plugins.load-tester.fake_kernel = no
	Fake the kernel interface to allow load-testing against self.

charon.plugins.load-tester.ike_rekey = 0
	Seconds to start IKE_SA rekeying after setup.

charon.plugins.load-tester.init_limit = 0
	Global limit of concurrently established SAs during load test.

charon.plugins.load-tester.initiator = 0.0.0.0
	Address to initiate from.

charon.plugins.load-tester.initiators = 0
	Number of concurrent initiator threads to use in load test.

charon.plugins.load-tester.initiator_auth = pubkey
	Authentication method(s) the intiator uses.

charon.plugins.load-tester.initiator_id =
	Initiator ID used in load test.

charon.plugins.load-tester.initiator_match =
	Initiator ID to match against as responder.

charon.plugins.load-tester.initiator_tsi =
	Traffic selector on initiator side, as proposed by initiator.

charon.plugins.load-tester.initiator_tsr =
	Traffic selector on responder side, as proposed by initiator.

charon.plugins.load-tester.iterations = 1
	Number of IKE_SAs to initiate by each initiator in load test.

charon.plugins.load-tester.issuer_cert =
	Path to the issuer certificate (if not configured a hard-coded default value
	is used).

charon.plugins.load-tester.issuer_key =
	Path to private key that is used to issue certificates (if not configured a
	hard-coded default value is used).

charon.plugins.load-tester.mode = tunnel
	IPsec mode to use, one of _tunnel_, _transport_, or _beet_.

charon.plugins.load-tester.pool =
	Provide INTERNAL_IPV4_ADDRs from a named pool.

charon.plugins.load-tester.preshared_key = <default-psk>
	Preshared key to use in load test.

charon.plugins.load-tester.proposal = aes128-sha1-modp768
	IKE proposal to use in load test.

charon.plugins.load-tester.responder = 127.0.0.1
	Address to initiation connections to.

charon.plugins.load-tester.responder_auth = pubkey
	Authentication method(s) the responder uses.

charon.plugins.load-tester.responder_id =
	Responder ID used in load test.

charon.plugins.load-tester.responder_tsi = initiator_tsi
	Traffic selector on initiator side, as narrowed by responder.

charon.plugins.load-tester.responder_tsr = initiator_tsr
	Traffic selector on responder side, as narrowed by responder.

charon.plugins.load-tester.request_virtual_ip = no
	Request an INTERNAL_IPV4_ADDR from the server.

charon.plugins.load-tester.shutdown_when_complete = no
	Shutdown the daemon after all IKE_SAs have been established.

charon.plugins.load-tester.socket = unix://${piddir}/charon.ldt
	Socket provided by the load-tester plugin.

charon.plugins.load-tester.version = 0
	IKE version to use (0 means use IKEv2 as initiator and accept any version as
	responder).