summaryrefslogtreecommitdiff
path: root/conf/plugins/load-tester.opt
blob: 7afe326185e3cf541851bb39a1b658a00ad94ef5 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
charon.plugins.load-tester {}
	Section to configure the load-tester plugin, see LOAD TESTS in
	**strongswan.conf**(5) for details.

charon.plugins.load-tester.addrs {}
	Section that contains key/value pairs with address pools (in CIDR notation)
	to use for a specific network interface e.g. eth0 = 10.10.0.0/16.

charon.plugins.load-tester.addrs_keep = no
	Whether to keep dynamic addresses even after the associated SA got
	terminated.

charon.plugins.load-tester.addrs_prefix = 16
	Network prefix length to use when installing dynamic addresses.
	If set to -1 the full address is used (i.e. 32 or 128).

charon.plugins.load-tester.ca_dir =
	Directory to load (intermediate) CA certificates from.

charon.plugins.load-tester.child_rekey = 600
	Seconds to start CHILD_SA rekeying after setup.

charon.plugins.load-tester.delay = 0
	Delay between initiatons for each thread.

charon.plugins.load-tester.delete_after_established = no
	Delete an IKE_SA as soon as it has been established.

charon.plugins.load-tester.digest = sha1
	Digest algorithm used when issuing certificates.

charon.plugins.load-tester.dpd_delay = 0
	DPD delay to use in load test.

charon.plugins.load-tester.dynamic_port = 0
	Base port to be used for requests (each client uses a different port).

charon.plugins.load-tester.eap_password = default-pwd
	EAP secret to use in load test.

charon.plugins.load-tester.enable = no
	Enable the load testing plugin. **WARNING**: Never enable this plugin on
	productive systems. It provides preconfigured credentials and allows an
	attacker to authenticate as any user.

charon.plugins.load-tester.esp = aes128-sha1
	CHILD_SA proposal to use for load tests.

charon.plugins.load-tester.fake_kernel = no
	Fake the kernel interface to allow load-testing against self.

charon.plugins.load-tester.ike_rekey = 0
	Seconds to start IKE_SA rekeying after setup.

charon.plugins.load-tester.init_limit = 0
	Global limit of concurrently established SAs during load test.

charon.plugins.load-tester.initiator = 0.0.0.0
	Address to initiate from.

charon.plugins.load-tester.initiators = 0
	Number of concurrent initiator threads to use in load test.

charon.plugins.load-tester.initiator_auth = pubkey
	Authentication method(s) the intiator uses.

charon.plugins.load-tester.initiator_id =
	Initiator ID used in load test.

charon.plugins.load-tester.initiator_match =
	Initiator ID to match against as responder.

charon.plugins.load-tester.initiator_tsi =
	Traffic selector on initiator side, as proposed by initiator.

charon.plugins.load-tester.initiator_tsr =
	Traffic selector on responder side, as proposed by initiator.

charon.plugins.load-tester.iterations = 1
	Number of IKE_SAs to initiate by each initiator in load test.

charon.plugins.load-tester.issuer_cert =
	Path to the issuer certificate (if not configured a hard-coded default value
	is used).

charon.plugins.load-tester.issuer_key =
	Path to private key that is used to issue certificates (if not configured a
	hard-coded default value is used).

charon.plugins.load-tester.mode = tunnel
	IPsec mode to use, one of _tunnel_, _transport_, or _beet_.

charon.plugins.load-tester.pool =
	Provide INTERNAL_IPV4_ADDRs from a named pool.

charon.plugins.load-tester.preshared_key = <default-psk>
	Preshared key to use in load test.

charon.plugins.load-tester.proposal = aes128-sha1-modp768
	IKE proposal to use in load test.

charon.plugins.load-tester.responder = 127.0.0.1
	Address to initiation connections to.

charon.plugins.load-tester.responder_auth = pubkey
	Authentication method(s) the responder uses.

charon.plugins.load-tester.responder_id =
	Responder ID used in load test.

charon.plugins.load-tester.responder_tsi = initiator_tsi
	Traffic selector on initiator side, as narrowed by responder.

charon.plugins.load-tester.responder_tsr = initiator_tsr
	Traffic selector on responder side, as narrowed by responder.

charon.plugins.load-tester.request_virtual_ip = no
	Request an INTERNAL_IPV4_ADDR from the server.

charon.plugins.load-tester.shutdown_when_complete = no
	Shutdown the daemon after all IKE_SAs have been established.

charon.plugins.load-tester.socket = unix://${piddir}/charon.ldt
	Socket provided by the load-tester plugin.

charon.plugins.load-tester.version = 0
	IKE version to use (0 means use IKEv2 as initiator and accept any version as
	responder).