| Title | 5.1.7 Discard, ESP=3DES-CBC HMAC-SHA1 |
| CommandLine | ./p2_HTR_E_Discard.seq -pkt ./p2_HTR_E_ICMP_common.def test_type=ADVANCED support=DISCARD_POLICY_SUPPORT -log 9.html -ti 5.1.7 Discard, ESP=3DES-CBC HMAC-SHA1 |
| TestVersion | V6PC_P2_IPsec_1_1_2 |
| ToolVersion | REL_3_0_12 |
| Start | 2008/05/06 10:57:42 |
| Tn | /usr/local/v6eval//etc//tn.def |
| Nu | /usr/local/v6eval//etc//nut.def |
| Pkt | ./p2_HTR_E_ICMP_common.def |
| System | rhel51 |
| TargetName | RHEL5.1 |
| HostName | IPv6testee2.nay.redhat.com |
| Type | host |
| 10:57:42 | Start |
|
*** Target initialization phase *** Target: Clear all SAD and SPD entries |
|
| 10:57:42 |
vRemote(ipsecClearAll.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecClearAll.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 ''
Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdflush; flush;' | setkey -c'' command /bin/echo 'spdflush; flush;' | setkey -c sendMessagesSync: got echo back of /bin/echo 'spdflush; flush;' | setkey -c rCommand: Try to get command prompt (0.2 sec) [root@IPv6testee2 ~]# rCommand: CmdOutput=`` [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
| 10:57:42 | Start Capturing Packets (Link0) |
| Target: Set SAD entries: src="3ffe:501:ffff:0001:0000:0000:0000:0001" dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" spi=0x1000 mode=transport protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcin01 eauth=hmac-sha1 eauthkey=ipv6readylogsha1in01 | |
| 10:57:42 |
vRemote(ipsecSetSAD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSAD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src="3ffe:501:ffff:0001:0000:0000:0000:0001"
dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" spi=0x1000 mode=transport
protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcin01
eauth=hmac-sha1 eauthkey=ipv6readylogsha1in01 ''
eval $main::rOpt_src='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_dst='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_spi='0x1000' eval $main::rOpt_mode='transport' eval $main::rOpt_protocol='esp' eval $main::rOpt_ealgo='3des-cbc' eval $main::rOpt_ealgokey='ipv6readylogo3descbcin01' eval $main::rOpt_eauth='hmac-sha1' eval $main::rOpt_eauthkey='ipv6readylogsha1in01' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E 3des-cbc "ipv6readylogo3descbcin01" -A hmac-sha1 "ipv6readylogsha1in01"; dump;' | setkey -c'' command /bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe :501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E 3des-cbc "ipv6readylog o3descbcin01" -A hmac-sha1 "ipv6readylogsha1in01"; dump;' | setkey -c 3ffe:501:ffff:1::1 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp mode=transport spi=4096(0x00001000) reqid=0(0x00000000) E: 3des-cbc 69707636 72656164 796c6f67 6f336465 73636263 696e3031 A: hmac-sha1 69707636 72656164 796c6f67 73686131 696e3031 seq=0x00000000 replay=0 flags=0x00000000 state=mature created: Jan 15 23:20:35 2002 current: Jan 15 23:20:35 2002 diff: 0(s) hard: 0(s) soft: 0(s) last: hard: 0(s) soft: 0(s) current: 0(bytes) hard: 0(bytes) soft: 0(bytes) allocated: 0 hard: 0 soft: 0 sadb_seq=0 pid=5542 refcnt=0 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E 3des-cbc "ipv6readylogo3descbcin01" -A hmac-sha1 "ipv6readylogsha1in01"; dump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe :501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E 3des-cbc "ipv6readylog o3descbcin01" -A hmac-sha1 "ipv6readylogsha1in01"; dump;' | setkey -c 3ffe:501:ffff:1::1 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp mode=transport spi=4096(0x00001000) reqid=0(0x00000000) E: 3des-cbc 69707636 72656164 796c6f67 6f336465 73636263 696e3031 A: hmac-sha1 69707636 72656164 796c6f67 73686131 696e3031 seq=0x00000000 replay=0 flags=0x00000000 state=mature created: Jan 15 23:20:35 2002 current: Jan 15 23:20:35 2002 diff: 0(s) hard: 0(s) soft: 0(s) last: hard: 0(s) soft: 0(s) current: 0(bytes) hard: 0(bytes) soft: 0(bytes) allocated: 0 hard: 0 soft: 0 sadb_seq=0 pid=5542 refcnt=0 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
| Target: Set SPD entries: src="3ffe:501:ffff:0001:0000:0000:0000:0001" dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" upperspec=any direction=in protocol=esp-auth mode=transport policy=ipsec | |
| 10:57:48 |
vRemote(ipsecSetSPD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSPD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src="3ffe:501:ffff:0001:0000:0000:0000:0001"
dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" upperspec=any direction=in
protocol=esp-auth mode=transport policy=ipsec ''
eval $main::rOpt_src='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_dst='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_upperspec='any' eval $main::rOpt_direction='in' eval $main::rOpt_protocol='esp-auth' eval $main::rOpt_mode='transport' eval $main::rOpt_policy='ipsec' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:0001:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' | setkey -c'' command /bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3 ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:00 01:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' | s etkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=72 seq=1 pid=5552 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=82 seq=0 pid=5552 refcnt=2 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:0001:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3 ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:00 01:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' | s etkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=72 seq=1 pid=5552 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=82 seq=0 pid=5552 refcnt=2 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
| Target: Set SAD entries: src="3ffe:501:ffff:0:207:e9ff:fe0b:2841" dst="3ffe:501:ffff:0001:0000:0000:0000:0001" spi=0x2000 mode=transport protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcout1 eauth=hmac-sha1 eauthkey=ipv6readylogsha1out1 | |
| 10:57:55 |
vRemote(ipsecSetSAD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSAD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src="3ffe:501:ffff:0:207:e9ff:fe0b:2841"
dst="3ffe:501:ffff:0001:0000:0000:0000:0001" spi=0x2000 mode=transport
protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcout1
eauth=hmac-sha1 eauthkey=ipv6readylogsha1out1 ''
eval $main::rOpt_src='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_dst='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_spi='0x2000' eval $main::rOpt_mode='transport' eval $main::rOpt_protocol='esp' eval $main::rOpt_ealgo='3des-cbc' eval $main::rOpt_ealgokey='ipv6readylogo3descbcout1' eval $main::rOpt_eauth='hmac-sha1' eval $main::rOpt_eauthkey='ipv6readylogsha1out1' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E 3des-cbc "ipv6readylogo3descbcout1" -A hmac-sha1 "ipv6readylogsha1out1"; dump;' | setkey -c'' command /bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501 :ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E 3des-cbc "ipv6readylog o3descbcout1" -A hmac-sha1 "ipv6readylogsha1out1"; dump;' | setkey -c 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:1::1 esp mode=transport spi=8192(0x00002000) reqid=0(0x00000000) E: 3des-cbc 69707636 72656164 796c6f67 6f336465 73636263 6f757431 A: hmac-sha1 69707636 72656164 796c6f67 73686131 6f757431 seq=0x00000000 replay=0 flags=0x00000000 state=mature created: Jan 15 23:20:48 2002 current: Jan 15 23:20:48 2002 diff: 0(s) hard: 0(s) soft: 0(s) last: hard: 0(s) soft: 0(s) current: 0(bytes) hard: 0(bytes) soft: 0(bytes) allocated: 0 hard: 0 soft: 0 sadb_seq=1 pid=5558 refcnt=0 3ffe:501:ffff:1::1 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp mode=transport spi=4096(0x00001000) reqid=0(0x00000000) E: 3des-cbc 69707636 72656164 796c6f67 6f336465 73636263 696e3031 A: hmac-sha1 69707636 72656164 796c6f67 73686131 696e3031 seq=0x00000000 replay=0 flags=0x00000000 state=mature created: Jan 15 23:20:35 2002 current: Jan 15 23:20:48 2002 diff: 13(s) hard: 0(s) soft: 0(s) last: hard: 0(s) soft: 0(s) current: 0(bytes) hard: 0(bytes) soft: 0(bytes) allocated: 0 hard: 0 soft: 0 sadb_seq=0 pid=5558 refcnt=0 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E 3des-cbc "ipv6readylogo3descbcout1" -A hmac-sha1 "ipv6readylogsha1out1"; dump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501 :ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E 3des-cbc "ipv6readylog o3descbcout1" -A hmac-sha1 "ipv6readylogsha1out1"; dump;' | setkey -c 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:1::1 esp mode=transport spi=8192(0x00002000) reqid=0(0x00000000) E: 3des-cbc 69707636 72656164 796c6f67 6f336465 73636263 6f757431 A: hmac-sha1 69707636 72656164 796c6f67 73686131 6f757431 seq=0x00000000 replay=0 flags=0x00000000 state=mature created: Jan 15 23:20:48 2002 current: Jan 15 23:20:48 2002 diff: 0(s) hard: 0(s) soft: 0(s) last: hard: 0(s) soft: 0(s) current: 0(bytes) hard: 0(bytes) soft: 0(bytes) allocated: 0 hard: 0 soft: 0 sadb_seq=1 pid=5558 refcnt=0 3ffe:501:ffff:1::1 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp mode=transport spi=4096(0x00001000) reqid=0(0x00000000) E: 3des-cbc 69707636 72656164 796c6f67 6f336465 73636263 696e3031 A: hmac-sha1 69707636 72656164 796c6f67 73686131 696e3031 seq=0x00000000 replay=0 flags=0x00000000 state=mature created: Jan 15 23:20:35 2002 current: Jan 15 23:20:48 2002 diff: 13(s) hard: 0(s) soft: 0(s) last: hard: 0(s) soft: 0(s) current: 0(bytes) hard: 0(bytes) soft: 0(bytes) allocated: 0 hard: 0 soft: 0 sadb_seq=0 pid=5558 refcnt=0 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
| Target: Set SPD entries: src="3ffe:501:ffff:0:207:e9ff:fe0b:2841" dst="3ffe:501:ffff:0001:0000:0000:0000:0001" upperspec=any direction=out protocol=esp-auth mode=transport policy=ipsec | |
| 10:58:00 |
vRemote(ipsecSetSPD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSPD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src="3ffe:501:ffff:0:207:e9ff:fe0b:2841"
dst="3ffe:501:ffff:0001:0000:0000:0000:0001" upperspec=any
direction=out protocol=esp-auth mode=transport policy=ipsec ''
eval $main::rOpt_src='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_dst='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_upperspec='any' eval $main::rOpt_direction='out' eval $main::rOpt_protocol='esp-auth' eval $main::rOpt_mode='transport' eval $main::rOpt_policy='ipsec' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0:207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' | setkey -c'' command /bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe: 501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0 :207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' | setkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=72 seq=2 pid=5568 refcnt=1 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:20:53 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=89 seq=1 pid=5568 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=82 seq=0 pid=5568 refcnt=1 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0:207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe: 501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0 :207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' | setkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=72 seq=2 pid=5568 refcnt=1 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:20:53 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=89 seq=1 pid=5568 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=82 seq=0 pid=5568 refcnt=1 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
| Target: Enable and start IPsec function | |
| 10:58:05 | vRemote(ipsecEnable.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecEnable.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 '' |
|
*** Target testing phase *** |
|
| 10:58:05 | Clear Captured Packets (Link0) |
| 10:58:05 |
vSend(Link0,echo_request_from_host1_esp) Send Echo Request with ESP from HOST-1(TN) |
| 10:58:05 | vRecv(Link0,echo_reply_to_host1_esp
ns_to_router_linkaddr_w_linkaddr rs_from_nut rs_from_nut_wsll
ns_to_router_wo_sllopt ns_to_router_linkaddr ns_to_router
rs_from_nut_wunspec) timeout:3 cntLimit:0 seektime:0 Receive Echo Reply with ESP from End-Node(NUT) to Host-1(TN) |
| 10:58:05 | vRecv(Link0,ns_to_router_linkaddr_w_linkaddr ns_to_router_wo_sllopt
ns_to_router_linkaddr ns_to_router) timeout:3 cntLimit:0 seektime:0 vRecv() return status=1 |
| 10:58:09 | vRecv(Link0,ns_to_router_linkaddr_w_linkaddr ns_to_router_wo_sllopt
ns_to_router_linkaddr ns_to_router) timeout:3 cntLimit:0 seektime:0 Receive Neighbor Solicitation from End-Node(NUT) |
| 10:58:10 |
vSend(Link0,na_from_router_linkaddr_w_linkaddr) Send Neighbor Advertisement from Router(TN) |
|
TN received echo reply from NUT to HOST1. Judgement #1: OK Set Discard policy to NUT Target: Set SPD entries: src=any dst=any upperspec=any direction=in protocol=esp-auth mode=transport policy=discard |
|
| 10:58:10 |
vRemote(ipsecSetSPD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSPD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src=any dst=any upperspec=any direction=in
protocol=esp-auth mode=transport policy=discard ''
eval $main::rOpt_src='any' eval $main::rOpt_dst='any' eval $main::rOpt_upperspec='any' eval $main::rOpt_direction='in' eval $main::rOpt_protocol='esp-auth' eval $main::rOpt_mode='transport' eval $main::rOpt_policy='discard' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdadd any any any -P in discard; spddump;' | setkey -c'' command /bin/echo 'spdadd any any any -P in discard; spddump;' | s etkey -c line 0: syntax error at [any] 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: Jan 15 23:20:58 2002 lifetime: 0(s) validtime: 0(s) spid=72 seq=2 pid=5574 refcnt=2 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:20:53 2002 lastused: Jan 15 23:20:58 2002 lifetime: 0(s) validtime: 0(s) spid=89 seq=1 pid=5574 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=82 seq=0 pid=5574 refcnt=1 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'spdadd any any any -P in discard; spddump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'spdadd any any any -P in discard; spddump;' | s etkey -c line 0: syntax error at [any] 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: Jan 15 23:20:58 2002 lifetime: 0(s) validtime: 0(s) spid=72 seq=2 pid=5574 refcnt=2 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:20:53 2002 lastused: Jan 15 23:20:58 2002 lifetime: 0(s) validtime: 0(s) spid=89 seq=1 pid=5574 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=82 seq=0 pid=5574 refcnt=1 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
| Target: Set SPD entries: src=any dst=any upperspec=any direction=out protocol=esp-auth mode=transport policy=discard | |
| 10:58:16 | vRemote(ipsecSetSPD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSPD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src=any dst=any upperspec=any direction=out
protocol=esp-auth mode=transport policy=discard ''
eval $main::rOpt_src='any' eval $main::rOpt_dst='any' eval $main::rOpt_upperspec='any' eval $main::rOpt_direction='out' eval $main::rOpt_protocol='esp-auth' eval $main::rOpt_mode='transport' eval $main::rOpt_policy='discard' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdadd any any any -P out discard; spddump;' | setkey -c'' command /bin/echo 'spdadd any any any -P out discard; spddump;' | setkey -c line 0: syntax error at [any] 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: Jan 15 23:20:58 2002 lifetime: 0(s) validtime: 0(s) spid=72 seq=2 pid=5581 refcnt=2 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:20:53 2002 lastused: Jan 15 23:20:58 2002 lifetime: 0(s) validtime: 0(s) spid=89 seq=1 pid=5581 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=82 seq=0 pid=5581 refcnt=1 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'spdadd any any any -P out discard; spddump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'spdadd any any any -P out discard; spddump;' | setkey -c line 0: syntax error at [any] 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: Jan 15 23:20:58 2002 lifetime: 0(s) validtime: 0(s) spid=72 seq=2 pid=5581 refcnt=2 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:20:53 2002 lastused: Jan 15 23:20:58 2002 lifetime: 0(s) validtime: 0(s) spid=89 seq=1 pid=5581 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:20:41 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=82 seq=0 pid=5581 refcnt=1 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
| Target: Enable and start IPsec function | |
| 10:58:22 | vRemote(ipsecEnable.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecEnable.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 '' |
| 10:58:22 | Clear Captured Packets (Link0) |
| 10:58:22 |
vSend(Link0,echo_request_from_host2_net1_to_host0_net0) Send Echo Request from Host2(TN) to End-Node(NUT) |
| 10:58:22 | vRecv(Link0,echo_reply_from_host0_net0_to_host2_net1
echo_reply_to_host2_esp ns_to_router_linkaddr_w_linkaddr rs_from_nut
rs_from_nut_wsll ns_to_router_wo_sllopt ns_to_router_linkaddr
ns_to_router rs_from_nut_wunspec) timeout:3 cntLimit:0 seektime:0 Receive Echo Reply from End-Node(NUT) to Host2(TN) |
| 10:58:22 | vRecv(Link0,ns_to_router_linkaddr_w_linkaddr ns_to_router_wo_sllopt
ns_to_router_linkaddr ns_to_router) timeout:3 cntLimit:0 seektime:0 vRecv() return status=1 |
| 10:58:25 | vRecv(Link0,ns_to_router_linkaddr_w_linkaddr ns_to_router_wo_sllopt
ns_to_router_linkaddr ns_to_router) timeout:3 cntLimit:0 seektime:0 vRecv() return status=1 |
|
TN received echo reply from End-Node(NUT) to HOST-1(TN). NG |
|
| 10:58:28 | End |
Frame_Ether (length:106) | Hdr_Ether (length:14) | | DestinationAddress = 00:07:e9:0b:28:41 | | SourceAddress = 00:00:00:00:00:0f | | Type = 34525 | Packet_IPv6 (length:92) | | Hdr_IPv6 (length:40) | | | Version = 6 | | | TrafficClass = 0 | | | FlowLabel = 0 | | | PayloadLength = 52 | | | NextHeader = 50 | | | HopLimit = 64 | | | SourceAddress = 3ffe:501:ffff:1::1 | | | DestinationAddress = 3ffe:501:ffff:0:207:e9ff:fe0b:2841 | | Hdr_ESP (length:52) | | | SPI = 4096 | | | SequenceNumber = 1 | | | algorithm = ealgo_3descbc_hmacsha1_in | | | IVEC = 00000000 00000000 | | | Decrypted (length:24) | | | | ESPPayload (length:22) | | | | | ICMPv6_EchoRequest (length:22) | | | | | | Type = 128 | | | | | | Code = 0 | | | | | | Checksum = 26848 calc(26848) | | | | | | Identifier = 0 | | | | | | SequenceNumber = 0 | | | | | | Payload (length:14) | | | | | | | data = 5061644c 656e2069 73205a65 726f | | | | Padding = | | | | PadLength = 0 | | | | NextHeader = 58 | | | ICV = f546db31 7a4a2d44 11133c28 calc(f546db31 7a4a2d44 11133c28)
===ALGORITHM LISTS BEGIN====================
--------------------------------------------
frame=echo_reply_to_host1_esp
ESP=ealgo_3descbc_hmacsha1_out
crypt=des3cbc("ipv6readylogo3descbcout1")
auth=hmacsha1("ipv6readylogsha1out1")
--------------------------------------------
===ALGORITHM LISTS END======================
Frame_Ether (length:106)
| Hdr_Ether (length:14)
| | DestinationAddress = 00:00:00:00:00:0f
| | SourceAddress = 00:07:e9:0b:28:41
| | Type = 34525
| Packet_IPv6 (length:92)
| | Hdr_IPv6 (length:40)
| | | Version = 6
| | | TrafficClass = 0
| | | FlowLabel = 0
| | | PayloadLength = 52
| | | NextHeader = 50
| | | HopLimit = 64
| | | SourceAddress = 3ffe:501:ffff:0:207:e9ff:fe0b:2841
| | | DestinationAddress = 3ffe:501:ffff:1::1
| | Hdr_ESP (length:52)
| | | SPI = 8192
| | | SequenceNumber = 1
| | | algorithm = ealgo_3descbc_hmacsha1_out
| | | IVEC = 3d6124ad e3424292
| | | Decrypted (length:24)
| | | | ESPPayload (length:22)
| | | | | ICMPv6_EchoReply (length:22)
| | | | | | Type = 129
| | | | | | Code = 0
| | | | | | Checksum = 26592 calc(26592)
| | | | | | Identifier = 0
| | | | | | SequenceNumber = 0
| | | | | | Payload (length:14)
| | | | | | | data = 5061644c 656e2069 73205a65 726f
| | | | Padding =
| | | | PadLength = 0
| | | | NextHeader = 58
| | | ICV = 74ee248a f4f73662 342093fa calc(74ee248a f4f73662 342093fa)
===echo_reply_to_host1_esp=================================
applied algorithms={ealgo_3descbc_hmacsha1_out}
Frame_Ether (length:86) | Hdr_Ether (length:14) | | DestinationAddress = 00:00:00:00:00:0f | | SourceAddress = 00:07:e9:0b:28:41 | | Type = 34525 | Packet_IPv6 (length:72) | | Hdr_IPv6 (length:40) | | | Version = 6 | | | TrafficClass = 0 | | | FlowLabel = 0 | | | PayloadLength = 32 | | | NextHeader = 58 | | | HopLimit = 255 | | | SourceAddress = fe80::207:e9ff:fe0b:2841 | | | DestinationAddress = fe80::200:ff:fe00:f | | ICMPv6_NS (length:32) | | | Type = 135 | | | Code = 0 | | | Checksum = 22107 calc(22107) | | | Reserved = 0 | | | TargetAddress = fe80::200:ff:fe00:f | | | Opt_ICMPv6_SLL (length:8) | | | | Type = 1 | | | | Length = 1 | | | | LinkLayerAddress = 00:07:e9:0b:28:41 ===ns_to_router_linkaddr_w_linkaddr=================================
Frame_Ether (length:86) | Hdr_Ether (length:14) | | DestinationAddress = 00:07:e9:0b:28:41 | | SourceAddress = 00:00:00:00:00:0f | | Type = 34525 | Packet_IPv6 (length:72) | | Hdr_IPv6 (length:40) | | | Version = 6 | | | TrafficClass = 0 | | | FlowLabel = 0 | | | PayloadLength = 32 | | | NextHeader = 58 | | | HopLimit = 255 | | | SourceAddress = fe80::200:ff:fe00:f | | | DestinationAddress = fe80::207:e9ff:fe0b:2841 | | ICMPv6_NA (length:32) | | | Type = 136 | | | Code = 0 | | | Checksum = 34207 calc(34207) | | | RFlag = 1 | | | SFlag = 1 | | | OFlag = 1 | | | Reserved = 0 | | | TargetAddress = fe80::200:ff:fe00:f | | | Opt_ICMPv6_TLL (length:8) | | | | Type = 2 | | | | Length = 1 | | | | LinkLayerAddress = 00:00:00:00:00:0f
Frame_Ether (length:76) | Hdr_Ether (length:14) | | DestinationAddress = 00:07:e9:0b:28:41 | | SourceAddress = 00:00:00:00:00:0f | | Type = 34525 | Packet_IPv6 (length:62) | | Hdr_IPv6 (length:40) | | | Version = 6 | | | TrafficClass = 0 | | | FlowLabel = 0 | | | PayloadLength = 22 | | | NextHeader = 58 | | | HopLimit = 64 | | | SourceAddress = 3ffe:501:ffff:1::2 | | | DestinationAddress = 3ffe:501:ffff:0:207:e9ff:fe0b:2841 | | ICMPv6_EchoRequest (length:22) | | | Type = 128 | | | Code = 0 | | | Checksum = 26847 calc(26847) | | | Identifier = 0 | | | SequenceNumber = 0 | | | Payload (length:14) | | | | data = 5061644c 656e2069 73205a65 726f
===ALGORITHM LISTS BEGIN====================
--------------------------------------------
frame=echo_reply_to_host2_esp
ESP=ealgo_3descbc_hmacsha1_out_2
crypt=des3cbc("ipv6readylogo3descbcout2")
auth=hmacsha1("ipv6readylogsha1out2")
--------------------------------------------
===ALGORITHM LISTS END======================
Frame_Ether (length:76)
| Hdr_Ether (length:14)
| | DestinationAddress = 00:00:00:00:00:0f
| | SourceAddress = 00:07:e9:0b:28:41
| | Type = 34525
| Packet_IPv6 (length:62)
| | Hdr_IPv6 (length:40)
| | | Version = 6
| | | TrafficClass = 0
| | | FlowLabel = 0
| | | PayloadLength = 22
| | | NextHeader = 58
| | | HopLimit = 64
| | | SourceAddress = 3ffe:501:ffff:0:207:e9ff:fe0b:2841
| | | DestinationAddress = 3ffe:501:ffff:1::2
| | ICMPv6_EchoReply (length:22)
| | | Type = 129
| | | Code = 0
| | | Checksum = 26591 calc(26591)
| | | Identifier = 0
| | | SequenceNumber = 0
| | | Payload (length:14)
| | | | data = 5061644c 656e2069 73205a65 726f
===echo_reply_from_host0_net0_to_host2_net1=================================