ceph/src/spdk/dpdk/examples/ipsec-secgw/test/tun_aesctr_sha1_defs.sh

   1 #! /bin/bash
   2 # SPDX-License-Identifier: BSD-3-Clause
   3
   4 . ${DIR}/tun_aesctr_sha1_common_defs.sh
   5
   6 SGW_CMD_XPRM="${DPDK_VARS} ${DPDK_MODE} ${SGW_CMD_XPRM}"
   7
   8 config_remote_xfrm_44()
   9 {
  10         ssh ${REMOTE_HOST} ip xfrm policy flush
  11         ssh ${REMOTE_HOST} ip xfrm state flush
  12
  13         ssh ${REMOTE_HOST} ip xfrm policy add \
  14 src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
  15 dir out ptype main action allow \
  16 tmpl src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
  17 proto esp mode tunnel reqid 1
  18
  19         ssh ${REMOTE_HOST} ip xfrm policy add \
  20 src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
  21 dir in ptype main action allow \
  22 tmpl src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
  23 proto esp mode tunnel reqid 2
  24
  25         ssh ${REMOTE_HOST} ip xfrm state add \
  26 src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
  27 proto esp spi 7 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
  28 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
  29 enc "rfc3686\(ctr\(aes\)\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
  30
  31         ssh ${REMOTE_HOST} ip xfrm state add \
  32 src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
  33 proto esp spi 7 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
  34 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
  35 enc "rfc3686\(ctr\(aes\)\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
  36
  37         ssh ${REMOTE_HOST} ip xfrm policy list
  38         ssh ${REMOTE_HOST} ip xfrm state list
  39 }
  40
  41 config_remote_xfrm_46()
  42 {
  43         ssh ${REMOTE_HOST} ip xfrm policy flush
  44         ssh ${REMOTE_HOST} ip xfrm state flush
  45
  46         ssh ${REMOTE_HOST} ip xfrm policy add \
  47 src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
  48 dir out ptype main action allow \
  49 tmpl src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
  50 proto esp mode tunnel reqid 1
  51
  52         ssh ${REMOTE_HOST} ip xfrm policy add \
  53 src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
  54 dir in ptype main action allow \
  55 tmpl src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
  56 proto esp mode tunnel reqid 2
  57
  58         ssh ${REMOTE_HOST} ip xfrm state add \
  59 src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
  60 proto esp spi 6 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
  61 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
  62 enc "rfc3686\(ctr\(aes\)\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
  63 sel src ${REMOTE_IPV4} dst ${LOCAL_IPV4}
  64
  65         ssh ${REMOTE_HOST} ip xfrm state add \
  66 src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
  67 proto esp spi 6 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
  68 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
  69 enc "rfc3686\(ctr\(aes\)\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
  70 sel src ${LOCAL_IPV4} dst ${REMOTE_IPV4}
  71
  72         ssh ${REMOTE_HOST} ip xfrm policy list
  73         ssh ${REMOTE_HOST} ip xfrm state list
  74 }
  75
  76 config_remote_xfrm_64()
  77 {
  78         ssh ${REMOTE_HOST} ip xfrm policy flush
  79         ssh ${REMOTE_HOST} ip xfrm state flush
  80
  81         ssh ${REMOTE_HOST} ip xfrm policy add \
  82 src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
  83 dir out ptype main action allow \
  84 tmpl src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
  85 proto esp mode tunnel reqid 1
  86
  87         ssh ${REMOTE_HOST} ip xfrm policy add \
  88 src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
  89 dir in ptype main action allow \
  90 tmpl src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
  91 proto esp mode tunnel reqid 2
  92
  93         ssh ${REMOTE_HOST} ip xfrm state add \
  94 src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
  95 proto esp spi 8 reqid 1 mode tunnel replay-window 64 ${XFRM_ESN} \
  96 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
  97 enc "rfc3686\(ctr\(aes\)\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
  98 sel src ${REMOTE_IPV6} dst ${LOCAL_IPV6}
  99
 100         ssh ${REMOTE_HOST} ip xfrm state add \
 101 src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
 102 proto esp spi 8 reqid 2 mode tunnel replay-window 64 ${XFRM_ESN} \
 103 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
 104 enc "rfc3686\(ctr\(aes\)\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
 105 sel src ${LOCAL_IPV6} dst ${REMOTE_IPV6}
 106
 107         ssh ${REMOTE_HOST} ip xfrm policy list
 108         ssh ${REMOTE_HOST} ip xfrm state list
 109 }
 110
 111 config_remote_xfrm_66()
 112 {
 113         ssh ${REMOTE_HOST} ip xfrm policy flush
 114         ssh ${REMOTE_HOST} ip xfrm state flush
 115
 116         ssh ${REMOTE_HOST} ip xfrm policy add \
 117 src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
 118 dir out ptype main action allow \
 119 tmpl src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
 120 proto esp mode tunnel reqid 3
 121
 122         ssh ${REMOTE_HOST} ip xfrm policy add \
 123 src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
 124 dir in ptype main action allow \
 125 tmpl src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
 126 proto esp mode tunnel reqid 4
 127
 128         ssh ${REMOTE_HOST} ip xfrm state add \
 129 src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
 130 proto esp spi 9 reqid 3 mode tunnel replay-window 64 ${XFRM_ESN} \
 131 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
 132 enc "rfc3686\(ctr\(aes\)\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
 133
 134         ssh ${REMOTE_HOST} ip xfrm state add \
 135 src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
 136 proto esp spi 9 reqid 4 mode tunnel replay-window 64 ${XFRM_ESN} \
 137 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
 138 enc "rfc3686\(ctr\(aes\)\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
 139
 140         ssh ${REMOTE_HOST} ip xfrm policy list
 141         ssh ${REMOTE_HOST} ip xfrm state list
 142 }