3 . ${DIR}/trs_3descbc_sha1_common_defs.sh
5 SGW_CMD_XPRM='-e -w 300'
9 ssh ${REMOTE_HOST} ip xfrm policy flush
10 ssh ${REMOTE_HOST} ip xfrm state flush
12 ssh ${REMOTE_HOST} ip xfrm policy add \
13 src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
14 dir out ptype main action allow \
15 tmpl proto esp mode transport reqid 1
17 ssh ${REMOTE_HOST} ip xfrm policy add \
18 src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
19 dir in ptype main action allow \
20 tmpl proto esp mode transport reqid 2
22 ssh ${REMOTE_HOST} ip xfrm state add \
23 src ${REMOTE_IPV4} dst ${LOCAL_IPV4} \
24 proto esp spi 7 reqid 1 mode transport replay-window 64 flag esn \
25 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
26 enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
28 ssh ${REMOTE_HOST} ip xfrm state add \
29 src ${LOCAL_IPV4} dst ${REMOTE_IPV4} \
30 proto esp spi 7 reqid 2 mode transport replay-window 64 flag esn \
31 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
32 enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
34 ssh ${REMOTE_HOST} ip xfrm policy list
35 ssh ${REMOTE_HOST} ip xfrm state list
42 ssh ${REMOTE_HOST} ip xfrm policy add \
43 src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
44 dir out ptype main action allow \
45 tmpl proto esp mode transport reqid 3
47 ssh ${REMOTE_HOST} ip xfrm policy add \
48 src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
49 dir in ptype main action allow \
50 tmpl proto esp mode transport reqid 4
52 ssh ${REMOTE_HOST} ip xfrm state add \
53 src ${REMOTE_IPV6} dst ${LOCAL_IPV6} \
54 proto esp spi 9 reqid 3 mode transport replay-window 64 flag esn \
55 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
56 enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
58 ssh ${REMOTE_HOST} ip xfrm state add \
59 src ${LOCAL_IPV6} dst ${REMOTE_IPV6} \
60 proto esp spi 9 reqid 4 mode transport replay-window 64 flag esn \
61 auth sha1 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef \
62 enc "cbc\(des3_ede\)" 0xdeadbeefdeadbeefdeadbeefdeadbeefdeadbeefdeadbeef
64 ssh ${REMOTE_HOST} ip xfrm policy list
65 ssh ${REMOTE_HOST} ip xfrm state list