]>
Commit | Line | Data |
---|---|---|
9f95a23c | 1 | #! /bin/bash |
f67539c2 | 2 | # SPDX-License-Identifier: BSD-3-Clause |
9f95a23c TL |
3 | |
4 | . ${DIR}/trs_aesgcm_common_defs.sh | |
5 | ||
f67539c2 | 6 | SGW_CMD_XPRM="${DPDK_VARS} ${DPDK_MODE} ${SGW_CMD_XPRM}" |
9f95a23c | 7 | |
f67539c2 | 8 | config_remote_xfrm_44() |
9f95a23c TL |
9 | { |
10 | ssh ${REMOTE_HOST} ip xfrm policy flush | |
11 | ssh ${REMOTE_HOST} ip xfrm state flush | |
12 | ||
13 | ssh ${REMOTE_HOST} ip xfrm policy add \ | |
14 | src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \ | |
15 | dir out ptype main action allow \ | |
16 | tmpl proto esp mode transport reqid 1 | |
17 | ||
18 | ssh ${REMOTE_HOST} ip xfrm policy add \ | |
19 | src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \ | |
20 | dir in ptype main action allow \ | |
21 | tmpl proto esp mode transport reqid 2 | |
22 | ||
23 | ssh ${REMOTE_HOST} ip xfrm state add \ | |
24 | src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \ | |
f67539c2 | 25 | proto esp spi 7 reqid 1 mode transport replay-window 64 ${XFRM_ESN} \ |
9f95a23c TL |
26 | aead "rfc4106\(gcm\(aes\)\)" \ |
27 | 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 | |
28 | ||
29 | ssh ${REMOTE_HOST} ip xfrm state add \ | |
30 | src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \ | |
f67539c2 | 31 | proto esp spi 7 reqid 2 mode transport replay-window 64 ${XFRM_ESN} \ |
9f95a23c TL |
32 | aead "rfc4106\(gcm\(aes\)\)" \ |
33 | 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 | |
34 | ||
35 | ssh ${REMOTE_HOST} ip xfrm policy list | |
36 | ssh ${REMOTE_HOST} ip xfrm state list | |
9f95a23c TL |
37 | } |
38 | ||
f67539c2 | 39 | config_remote_xfrm_66() |
9f95a23c | 40 | { |
f67539c2 TL |
41 | ssh ${REMOTE_HOST} ip xfrm policy flush |
42 | ssh ${REMOTE_HOST} ip xfrm state flush | |
9f95a23c TL |
43 | |
44 | ssh ${REMOTE_HOST} ip xfrm policy add \ | |
45 | src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \ | |
46 | dir out ptype main action allow \ | |
47 | tmpl proto esp mode transport reqid 3 | |
48 | ||
49 | ssh ${REMOTE_HOST} ip xfrm policy add \ | |
50 | src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \ | |
51 | dir in ptype main action allow \ | |
52 | tmpl proto esp mode transport reqid 4 | |
53 | ||
54 | ssh ${REMOTE_HOST} ip xfrm state add \ | |
55 | src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \ | |
f67539c2 | 56 | proto esp spi 9 reqid 3 mode transport replay-window 64 ${XFRM_ESN} \ |
9f95a23c TL |
57 | aead "rfc4106\(gcm\(aes\)\)" \ |
58 | 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 | |
59 | ||
60 | ssh ${REMOTE_HOST} ip xfrm state add \ | |
61 | src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \ | |
f67539c2 | 62 | proto esp spi 9 reqid 4 mode transport replay-window 64 ${XFRM_ESN} \ |
9f95a23c TL |
63 | aead "rfc4106\(gcm\(aes\)\)" \ |
64 | 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef 128 | |
65 | ||
66 | ssh ${REMOTE_HOST} ip xfrm policy list | |
67 | ssh ${REMOTE_HOST} ip xfrm state list | |
9f95a23c | 68 | } |