Annotation of embedaddon/strongswan/testing/tests/sql/shunt-policies-nat-rw/hosts/venus/etc/ipsec.d/data.sql.in, revision 1.1.1.1
1.1 misho 1: /* Identities */
2:
3: INSERT INTO identities (
4: type, data
5: ) VALUES ( /* C=CH, O=strongSwan Project, CN=strongSwan Root CA */
6: 9, X'3047310b3009060355040613024348311b3019060355040a13127374726f6e675377616e2050726f6a656374311b3019060355040313127374726f6e675377616e20526f6f74204341'
7: );
8:
9: INSERT INTO identities (
10: type, data
11: ) VALUES ( /* subjkey of 'C=CH, O=strongSwan Project, CN=strongSwan Root CA' */
12: 11, X'CA_SPK_HEX'
13: );
14:
15: INSERT INTO identities (
16: type, data
17: ) VALUES ( /* keyid of 'C=CH, O=strongSwan Project, CN=strongSwan Root CA' */
18: 11, X'CA_SPKI_HEX'
19: );
20:
21: INSERT INTO identities (
22: type, data
23: ) VALUES ( /* venus.strongswan.org */
24: 2, X'76656e75732e7374726f6e677377616e2e6f7267'
25: );
26:
27: INSERT INTO identities (
28: type, data
29: ) VALUES ( /* sun.strongswan.org */
30: 2, X'73756e2e7374726f6e677377616e2e6f7267'
31: );
32:
33: INSERT INTO identities (
34: type, data
35: ) VALUES ( /* subjkey of 'C=CH, O=strongSwan Project, CN=venus.strongswan.org' */
36: 11, X'VENUS_SPK_HEX'
37: );
38:
39: INSERT INTO identities (
40: type, data
41: ) VALUES ( /* %any */
42: 0, '%any'
43: );
44:
45: /* Certificates */
46:
47: INSERT INTO certificates (
48: type, keytype, data
49: ) VALUES ( /* C=CH, O=strongSwan Project, CN=strongSwan Root CA */
50: 1, 1, X'CA_CERT_HEX'
51: );
52:
53: INSERT INTO certificates (
54: type, keytype, data
55: ) VALUES ( /* C=CH, O=strongSwan Project, CN=venus.strongswan.org */
56: 1, 1, X'VENUS_CERT_HEX'
57: );
58:
59: INSERT INTO certificate_identity (
60: certificate, identity
61: ) VALUES (
62: 1, 1
63: );
64:
65: INSERT INTO certificate_identity (
66: certificate, identity
67: ) VALUES (
68: 1, 2
69: );
70:
71: INSERT INTO certificate_identity (
72: certificate, identity
73: ) VALUES (
74: 1, 3
75: );
76:
77: INSERT INTO certificate_identity (
78: certificate, identity
79: ) VALUES (
80: 2, 4
81: );
82:
83: INSERT INTO certificate_identity (
84: certificate, identity
85: ) VALUES (
86: 2, 6
87: );
88:
89: /* Private Keys */
90:
91: INSERT INTO private_keys (
92: type, data
93: ) VALUES ( /* key of 'C=CH, O=strongSwan Project, CN=venus.strongswan.org' */
94: 1, X'VENUS_KEY_HEX'
95: );
96:
97: INSERT INTO private_key_identity (
98: private_key, identity
99: ) VALUES (
100: 1, 4
101: );
102:
103: INSERT INTO private_key_identity (
104: private_key, identity
105: ) VALUES (
106: 1, 6
107: );
108:
109: /* Configurations */
110:
111: INSERT INTO ike_configs (
112: local, remote
113: ) VALUES (
114: 'PH_IP_VENUS', 'PH_IP_SUN'
115: );
116:
117: INSERT INTO ike_configs (
118: local, remote
119: ) VALUES (
120: '%any', '%any'
121: );
122:
123: INSERT INTO peer_configs (
124: name, ike_cfg, local_id, remote_id, virtual
125: ) VALUES (
126: 'nat-t', 1, 4, 5, '0.0.0.0'
127: );
128:
129: INSERT INTO peer_configs (
130: name, ike_cfg, local_id, remote_id, auth_method
131: ) VALUES (
132: 'shunts', 2, 7, 7, 0
133: );
134:
135: INSERT INTO child_configs (
136: name
137: ) VALUES (
138: 'nat-t'
139: );
140:
141: INSERT INTO child_configs (
142: name, mode, start_action
143: ) VALUES (
144: 'local-net', 4, 1
145: );
146:
147: INSERT INTO peer_config_child_config (
148: peer_cfg, child_cfg
149: ) VALUES (
150: 1, 1
151: );
152:
153: INSERT INTO peer_config_child_config (
154: peer_cfg, child_cfg
155: ) VALUES (
156: 2, 2
157: );
158:
159: INSERT INTO traffic_selectors (
160: type, start_addr, end_addr
161: ) VALUES ( /* 10.1.0.0/16 */
162: 7, X'0a010000', X'0a01ffff'
163: );
164:
165: INSERT INTO traffic_selectors (
166: type, start_addr, end_addr
167: ) VALUES ( /* 0.0.0.0/0 */
168: 7, X'00000000', X'ffffffff'
169: );
170:
171: INSERT INTO traffic_selectors (
172: type
173: ) VALUES ( /* dynamic/32 */
174: 7
175: );
176:
177: INSERT INTO child_config_traffic_selector (
178: child_cfg, traffic_selector, kind
179: ) VALUES (
180: 1, 2, 1
181: );
182:
183: INSERT INTO child_config_traffic_selector (
184: child_cfg, traffic_selector, kind
185: ) VALUES (
186: 1, 3, 2
187: );
188:
189: INSERT INTO child_config_traffic_selector (
190: child_cfg, traffic_selector, kind
191: ) VALUES (
192: 2, 1, 0
193: );
194:
195: INSERT INTO child_config_traffic_selector (
196: child_cfg, traffic_selector, kind
197: ) VALUES (
198: 2, 1, 1
199: );
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>