examples/ipsec-secgw: add bypass test case

author Konstantin Ananyev <konstantin.ananyev@intel.com>

Tue, 25 Jun 2019 23:16:49 +0000 (00:16 +0100)

committer Akhil Goyal <akhil.goyal@nxp.com>

Fri, 5 Jul 2019 13:28:14 +0000 (15:28 +0200)
author Konstantin Ananyev <konstantin.ananyev@intel.com>
Tue, 25 Jun 2019 23:16:49 +0000 (00:16 +0100)
committer Akhil Goyal <akhil.goyal@nxp.com>
Fri, 5 Jul 2019 13:28:14 +0000 (15:28 +0200)
diff --git a/examples/ipsec-secgw/test/bypass_defs.sh b/examples/ipsec-secgw/test/bypass_defs.sh

new file mode 100644 (file)

index 0000000..12a8a5a
--- /dev/null
+++ b/examples/ipsec-secgw/test/bypass_defs.sh
@@ -0,0 +1,45 @@
+#! /bin/bash
+
+CRYPTO_DEV=${CRYPTO_DEV:-'--vdev="crypto_null0"'}
+
+#generate cfg file for ipsec-secgw
+config_secgw()
+{
+       cat <<EOF > ${SGW_CFG_FILE}
+
+sp ipv4 in esp bypass pri 1 sport 0:65535 dport 0:65535
+sp ipv6 in esp bypass pri 1 sport 0:65535 dport 0:65535
+
+sp ipv4 out esp bypass pri 1 sport 0:65535 dport 0:65535
+sp ipv6 out esp bypass pri 1 sport 0:65535 dport 0:65535
+
+#Routing rules
+rt ipv4 dst ${REMOTE_IPV4}/32 port 0
+rt ipv4 dst ${LOCAL_IPV4}/32 port 1
+
+rt ipv6 dst ${REMOTE_IPV6}/128 port 0
+rt ipv6 dst ${LOCAL_IPV6}/128 port 1
+
+#neighbours
+neigh port 0 ${REMOTE_MAC}
+neigh port 1 ${LOCAL_MAC}
+EOF
+
+       cat ${SGW_CFG_FILE}
+}
+
+SGW_CMD_XPRM='-w 300'
+
+config_remote_xfrm()
+{
+       ssh ${REMOTE_HOST} ip xfrm policy flush
+       ssh ${REMOTE_HOST} ip xfrm state flush
+
+       ssh ${REMOTE_HOST} ip xfrm policy list
+       ssh ${REMOTE_HOST} ip xfrm state list
+}
+
+config6_remote_xfrm()
+{
+       config_remote_xfrm
+}
author	Konstantin Ananyev <konstantin.ananyev@intel.com>
	Tue, 25 Jun 2019 23:16:49 +0000 (00:16 +0100)
committer	Akhil Goyal <akhil.goyal@nxp.com>
	Fri, 5 Jul 2019 13:28:14 +0000 (15:28 +0200)