Realisations/2006-2007/Projet/IpsecImplementation: ipsec_client.sh

#!/bin/sh
#  $File: /home/chris/PRes/Postes_Rackables/ipsec_client1/ipsec_client.sh $
#  $MD5: 66b54fe2372ec1bc50f1cb698a9614b1 $
#  $By Christophe Alladoum <christophe[dot]alladoum[at]gmail[dot]com>$
#  $Last-Modified: Fri Apr 20 19:49:55 2007$

# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License as published by
# the Free Software Foundation; either version 2 of the License, or
# (at your option) any later version.

# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.

# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA  02110-1301  USA

# Variables
## executables
EXEC_SETKEY="/sbin/setkey"
EXEC_RACOON="/usr/local/sbin/racoon"

## fichiers conf.
CONF_PSK="/root/ipsec_client1/psk.txt"
CONF_RACOON="/root/ipsec_client1/racoon.conf"
CONF_IPSEC="/root/ipsec_client1/ipsec.conf"

## fichiers log.
LOG_RACOON="/var/log/racoon.log"

## fichiers PID
PID_RACOON="/root/ipsec_client1/racoon.pid"

#### Lancement du script ####
kill -9 $(ps aux | grep racoon | grep -v grep | awk '{print $2}')
rm -rf $(cat $PID_RACOON)
$EXEC_SETKEY -F

echo 'Etablissement des droits de '$CONF_PSK
chmod 600 $CONF_PSK
chown root:wheel $CONF_PSK

echo -n 'Lancement de Racoon'
if $EXEC_RACOON -l $LOG_RACOON -f $CONF_RACOON ; then
    echo '[Succes]'
else
    echo '[Echec]'
    exit 1
fi

echo -n 'Lancement de SetKey'
if $EXEC_SETKEY -f $CONF_IPSEC ; then   
    echo '[Succes]'
else
    echo '[Echec]'
    exit 2
fi

echo 'Flux IPSec etabli'

exit 0