east:~# D=/testing/scripts/ipsec.conf-restart-01
east:~# export IPSEC_CONFS="$D/etc-norestart"
east:~# ipsec setup --showonly start | sed -e 's=\(Starting FreeS/WAN IPsec \).*\.\.\.=\1DATE...='
ipsec_setup: 	 PATH=/usr/local/sbin:/sbin:/usr/sbin:/usr/local/bin:/bin:/usr/bin
ipsec_setup: 	 test ! -f /var/run/ipsec_setup.pid || { echo "FreeS/WAN IPsec apparently already running, start aborted" ; exit 1 ; }
ipsec_setup: 	 echo "Starting FreeS/WAN IPsec DATE..."
ipsec_setup: 	 rm -f /var/run/ipsec_setup.pid
ipsec_setup: 	 test -r /dev/random || { echo "...unable to start FreeS/WAN IPsec, no /dev/random!" ; exit 1 ; }
ipsec_setup: 	 test -r /dev/urandom || { echo "...unable to start FreeS/WAN IPsec, no /dev/urandom!" ; exit 1 ; }
ipsec_setup: 	 echo $$ > /var/run/ipsec_setup.pid
ipsec_setup: 	 test -s /var/run/ipsec_setup.pid || { echo "...unable to create /var/run/ipsec_setup.pid, aborting start!" ; rm -f /var/run/ipsec_setup.pid ; exit 1 ; }
ipsec_setup: 	 > /var/run/ipsec.info
ipsec_setup: 	 ipsec _startklips --info /var/run/ipsec.info --debug "" --omtu "" --fragicmp "" --hidetos "" --rpfilter "0" --log "daemon.error" %defaultroute || { rm -f /var/run/ipsec_setup.pid ; exit 1 ; }
ipsec_setup: 	 test -f /proc/net/ipsec_version || test -f /proc/net/pfkey || { echo "OOPS, should have aborted!  Broken shell!" ; exit 1 ; }
ipsec_setup: 	 test -d /var/lock/subsys && touch /var/lock/subsys/ipsec
ipsec_setup: 	 ipsec _plutorun --debug "" --uniqueids "yes" --dump "" --opts "" --stderrlog "" --wait "no" --pre "" --post "" --log "daemon.error" --plutorestartoncrash true --pid "/var/run/pluto.pid" || { ifl=` ifconfig | sed -n -e "/^ipsec/s/ .*//p" ` ; test "X$ifl" != "X" && for i in $ifl ; do ifconfig $i down ; ipsec tncfg --detach --virtual $i ; done ; test -r /proc/net/ipsec_klipsdebug && ipsec klipsdebug --none ; ipsec eroute --clear ; ipsec spi --clear ; lsmod 2>&1 | grep "^ipsec" > /dev/null && rmmod ipsec ; rm -f /var/run/ipsec_setup.pid ; exit 1 ; }
ipsec_setup: 	 echo "...FreeS/WAN IPsec started" | logger -p daemon.error -t ipsec_setup
east:~# export IPSEC_CONFS="$D/etc-restart"
east:~# ipsec setup --showonly start | sed -e 's=\(Starting FreeS/WAN IPsec \).*\.\.\.=\1DATE...='
ipsec_setup: 	 PATH=/usr/local/sbin:/sbin:/usr/sbin:/usr/local/bin:/bin:/usr/bin
ipsec_setup: 	 test ! -f /var/run/ipsec_setup.pid || { echo "FreeS/WAN IPsec apparently already running, start aborted" ; exit 1 ; }
ipsec_setup: 	 echo "Starting FreeS/WAN IPsec DATE..."
ipsec_setup: 	 rm -f /var/run/ipsec_setup.pid
ipsec_setup: 	 test -r /dev/random || { echo "...unable to start FreeS/WAN IPsec, no /dev/random!" ; exit 1 ; }
ipsec_setup: 	 test -r /dev/urandom || { echo "...unable to start FreeS/WAN IPsec, no /dev/urandom!" ; exit 1 ; }
ipsec_setup: 	 echo $$ > /var/run/ipsec_setup.pid
ipsec_setup: 	 test -s /var/run/ipsec_setup.pid || { echo "...unable to create /var/run/ipsec_setup.pid, aborting start!" ; rm -f /var/run/ipsec_setup.pid ; exit 1 ; }
ipsec_setup: 	 > /var/run/ipsec.info
ipsec_setup: 	 ipsec _startklips --info /var/run/ipsec.info --debug "" --omtu "" --fragicmp "" --hidetos "" --rpfilter "0" --log "daemon.error" %defaultroute || { rm -f /var/run/ipsec_setup.pid ; exit 1 ; }
ipsec_setup: 	 test -f /proc/net/ipsec_version || test -f /proc/net/pfkey || { echo "OOPS, should have aborted!  Broken shell!" ; exit 1 ; }
ipsec_setup: 	 test -d /var/lock/subsys && touch /var/lock/subsys/ipsec
ipsec_setup: 	 ipsec _plutorun --debug "" --uniqueids "yes" --dump "" --opts "" --stderrlog "" --wait "no" --pre "" --post "" --log "daemon.error" --plutorestartoncrash false --pid "/var/run/pluto.pid" || { ifl=` ifconfig | sed -n -e "/^ipsec/s/ .*//p" ` ; test "X$ifl" != "X" && for i in $ifl ; do ifconfig $i down ; ipsec tncfg --detach --virtual $i ; done ; test -r /proc/net/ipsec_klipsdebug && ipsec klipsdebug --none ; ipsec eroute --clear ; ipsec spi --clear ; lsmod 2>&1 | grep "^ipsec" > /dev/null && rmmod ipsec ; rm -f /var/run/ipsec_setup.pid ; exit 1 ; }
ipsec_setup: 	 echo "...FreeS/WAN IPsec started" | logger -p daemon.error -t ipsec_setup

