Add files via upload

jhoangr · web-flow · commit 4dcd85fe3877 · 2021-08-09T23:53:25.000+02:00
diff --git a/tunneling/ipsec-GW1.sh b/tunneling/ipsec-GW1.sh
@@ -0,0 +1,16 @@
+#!/usr/sbin/setkey -f
+
+flush;
+spdflush;
+# AH
+add 10.0.0.1 10.0.3.2 ah 15700 -A hmac-md5 "1234567890123456";
+add 10.0.3.2 10.0.0.1 ah 24500 -A hmac-md5 "1234567890123456";
+# ESP
+add 10.0.0.1 10.0.3.2 esp 15701 -E 3des-cbc "123456789012123456789012";
+add 10.0.3.2 10.0.0.1 esp 24501 -E 3des-cbc "123456789012123456789012";
+spdadd 10.0.0.1 10.0.3.2 any -P out ipsec
+	esp/transport//require
+	ah/transport//require;
+spdadd 10.0.3.2 10.0.0.1 any -P in ipsec
+	esp/transport//require
+	ah/transport//require;
diff --git a/tunneling/ipsec-GW2.sh b/tunneling/ipsec-GW2.sh
@@ -0,0 +1,17 @@
+#!/usr/sbin/setkey -f
+
+flush;
+spdflush;
+# AH
+add 10.0.0.1 10.0.3.2 ah 15700 -A hmac-md5 "1234567890123456";
+add 10.0.3.2 10.0.0.1 ah 24500 -A hmac-md5 "1234567890123456";
+# ESP
+add 10.0.0.1 10.0.3.2 esp 15701 -E 3des-cbc "123456789012123456789012";
+add 10.0.3.2 10.0.0.1 esp 24501 -E 3des-cbc "123456789012123456789012";
+
+spdadd 10.0.3.2 10.0.0.1 any -P out ipsec
+	esp/transport//require
+	ah/transport//require;
+spdadd 10.0.0.1 10.0.3.2 any -P in ipsec
+	esp/transport//require
+	ah/transport//require;
diff --git a/tunneling/setupTunnelGW1.sh b/tunneling/setupTunnelGW1.sh
@@ -0,0 +1,7 @@
+#!/bin/sh
+#creamos túnel asignando como host del otro extremo GW2
+ip tunnel add foo mode sit remote 10.0.3.2
+#activamos el túnel
+ip link set foo up
+#añadimos regla para enrutar el tráfico IPv6 hacia el túnel
+ip -6 r add 2000::/3 dev foo
diff --git a/tunneling/setupTunnelGW2.sh b/tunneling/setupTunnelGW2.sh
@@ -0,0 +1,4 @@
+#!/bin/sh
+ip tunnel add foo mode sit remote 10.0.0.1
+ip link set foo up
+ip -6 r add 2000::/3 dev foo
