racoon, посмотреть политики и поднятые каналы
setkey -aD
setkey -D
setkey -DP
tcpdump -s0 -vvvv -ni eth0 port 500
ссылка
setkey -aD
setkey -D
setkey -DP
IPsec Debugging
You can run racoon in debug mode in the foreground to view details on negotiation. First kill racoon, then launch it from a SSH session by running:racoon -d -v -F -f /var/etc/racoon.conf
Or leave out the -F to run it in the background but log details to the IPsec log.
tcpdump -s0 -vvvv -ni eth0 port 500
ссылка
