diff options
Diffstat (limited to 'recipes-connectivity/ipsec-demo/ipsec-demo/test_setkey/right.conf-null-null-tunnel')
-rwxr-xr-x | recipes-connectivity/ipsec-demo/ipsec-demo/test_setkey/right.conf-null-null-tunnel | 42 |
1 files changed, 42 insertions, 0 deletions
diff --git a/recipes-connectivity/ipsec-demo/ipsec-demo/test_setkey/right.conf-null-null-tunnel b/recipes-connectivity/ipsec-demo/ipsec-demo/test_setkey/right.conf-null-null-tunnel new file mode 100755 index 00000000..bc4f38eb --- /dev/null +++ b/recipes-connectivity/ipsec-demo/ipsec-demo/test_setkey/right.conf-null-null-tunnel | |||
@@ -0,0 +1,42 @@ | |||
1 | #!/usr/sbin/setkey -f | ||
2 | # | ||
3 | # | ||
4 | # Example ESP Tunnel for VPN. | ||
5 | # | ||
6 | # ========= ESP ========= | ||
7 | # | | | ||
8 | # Network-A Gateway-A Gateway-B Network-B | ||
9 | # 192.168.1.0/24 ---- 200.200.200.10 ------ 200.200.200.20 ---- 192.168.2.0/24 | ||
10 | # | ||
11 | # ====== 83xx board A ====== ===== 83xx board B ===== | ||
12 | # | | | | | ||
13 | # eth0 eth1 eth1 eth0 | ||
14 | # 192.168.1.130 200.200.200.10 200.200.200.20 192.168.2.130 | ||
15 | # | ||
16 | # | ||
17 | # Board B setup | ||
18 | # | ||
19 | # Flush the SAD and SPD | ||
20 | flush; | ||
21 | spdflush; | ||
22 | |||
23 | # I am gateway B (eth0:192.168.2.130, eth1:200.200.200.20) | ||
24 | # | ||
25 | # Security policies | ||
26 | spdadd 192.168.2.0/24 192.168.1.0/24 any -P out ipsec | ||
27 | esp/tunnel/200.200.200.20-200.200.200.10/require; | ||
28 | |||
29 | spdadd 192.168.1.0/24 192.168.2.0/24 any -P in ipsec | ||
30 | esp/tunnel/200.200.200.10-200.200.200.20/require; | ||
31 | |||
32 | |||
33 | # ESP SAs doing null encryption | ||
34 | # and null authentication | ||
35 | add 200.200.200.10 200.200.200.20 esp 0x201 -m tunnel | ||
36 | -E null | ||
37 | -A null; | ||
38 | |||
39 | add 200.200.200.20 200.200.200.10 esp 0x301 -m tunnel | ||
40 | -E null | ||
41 | -A null; | ||
42 | |||