[ceph.git] / ceph / src / spdk / dpdk / examples / ipsec-secgw / test / tun_3descbc_sha1_esn_defs.sh

#! /bin/bash

. ${DIR}/tun_3descbc_sha1_common_defs.sh

SGW_CMD_XPRM='-e -w 300'

config_remote_xfrm()
{
	ssh ${REMOTE_HOST} ip xfrm policy flush
	ssh ${REMOTE_HOST} ip xfrm state flush

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
dir out ptype main action allow \
tmpl src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
proto esp mode tunnel reqid 1

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
dir in ptype main action allow \
tmpl src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
proto esp mode tunnel reqid 2

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
proto esp spi 7 reqid 1 mode tunnel replay-window 64 flag esn \
auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
proto esp spi 7 reqid 2 mode tunnel replay-window 64 flag esn \
auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef

	ssh ${REMOTE_HOST} ip xfrm policy list
	ssh ${REMOTE_HOST} ip xfrm state list
}

config6_remote_xfrm()
{
	config_remote_xfrm

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
dir out ptype main action allow \
tmpl src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
proto esp mode tunnel reqid 3

	ssh ${REMOTE_HOST} ip xfrm policy add \
src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
dir in ptype main action allow \
tmpl src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
proto esp mode tunnel reqid 4

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
proto esp spi 9 reqid 3 mode tunnel replay-window 64 flag esn \
auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef

	ssh ${REMOTE_HOST} ip xfrm state add \
src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
proto esp spi 9 reqid 4 mode tunnel replay-window 64 flag esn \
auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef

	ssh ${REMOTE_HOST} ip xfrm policy list
	ssh ${REMOTE_HOST} ip xfrm state list
}
Commit	Line	Data
9f95a23c TL	1	#! /bin/bash
	2
	3	. ${DIR}/tun_3descbc_sha1_common_defs.sh
	4
	5	SGW_CMD_XPRM='-e -w 300'
	6
	7	config_remote_xfrm()
	8	{
	9	ssh ${REMOTE_HOST} ip xfrm policy flush
	10	ssh ${REMOTE_HOST} ip xfrm state flush
	11
	12	ssh ${REMOTE_HOST} ip xfrm policy add \
	13	src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
	14	dir out ptype main action allow \
	15	tmpl src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
	16	proto esp mode tunnel reqid 1
	17
	18	ssh ${REMOTE_HOST} ip xfrm policy add \
	19	src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
	20	dir in ptype main action allow \
	21	tmpl src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
	22	proto esp mode tunnel reqid 2
	23
	24	ssh ${REMOTE_HOST} ip xfrm state add \
	25	src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
	26	proto esp spi 7 reqid 1 mode tunnel replay-window 64 flag esn \
	27	auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
	28	enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
	29
	30	ssh ${REMOTE_HOST} ip xfrm state add \
	31	src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
	32	proto esp spi 7 reqid 2 mode tunnel replay-window 64 flag esn \
	33	auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
	34	enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
	35
	36	ssh ${REMOTE_HOST} ip xfrm policy list
	37	ssh ${REMOTE_HOST} ip xfrm state list
	38	}
	39
	40	config6_remote_xfrm()
	41	{
	42	config_remote_xfrm
	43
	44	ssh ${REMOTE_HOST} ip xfrm policy add \
	45	src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
	46	dir out ptype main action allow \
	47	tmpl src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
	48	proto esp mode tunnel reqid 3
	49
	50	ssh ${REMOTE_HOST} ip xfrm policy add \
	51	src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
	52	dir in ptype main action allow \
	53	tmpl src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
	54	proto esp mode tunnel reqid 4
	55
	56	ssh ${REMOTE_HOST} ip xfrm state add \
	57	src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
	58	proto esp spi 9 reqid 3 mode tunnel replay-window 64 flag esn \
	59	auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
	60	enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
	61
	62	ssh ${REMOTE_HOST} ip xfrm state add \
	63	src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
	64	proto esp spi 9 reqid 4 mode tunnel replay-window 64 flag esn \
65	auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
66	enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
67
68	ssh ${REMOTE_HOST} ip xfrm policy list
69	ssh ${REMOTE_HOST} ip xfrm state list
70	}