aboutsummaryrefslogtreecommitdiffstats
path: root/recipes-connectivity/ipsec-demo/ipsec-demo/test_setkey/right.conf-aes-sha1-transport
blob: d9c65a45cbf24a9e4908e6ba8a886c27f008a5b9 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
#!/usr/sbin/setkey -f
#I am 200.200.200.20

flush;
spdflush;

# ESP SAs doing encryption using 192 bit long keys (168 + 24 parity)
# and hmac-sha1 authentication using 160 bit long keys
add 200.200.200.10 200.200.200.20 esp 0x10513 
    -E aes-cbc   0x7aeaca3f87d060a12f4a4487d5a5c3355920fae69a96c831 
    -A hmac-sha1 0xe9c43acd5e8d779b6e09c87347852708ab49bdd3;

add 200.200.200.20 200.200.200.10 esp 0x10514 
    -E aes-cbc   0xf6ddb555acfd9d77b03ea3843f2653255afe8eb5573965df 
    -A hmac-sha1 0xea6856479330dc9c17b8f6c37e2a895363d83f21;

# Security policies
spdadd 200.200.200.20 200.200.200.10 any -P out ipsec
        esp/transport//require;

spdadd 200.200.200.10 200.200.200.20 any -P in ipsec
        esp/transport//require;