/* Identities */
INSERT INTO identities (
type, data
) VALUES ( /* C=CH, O=strongSwan Project, CN=strongSwan Root CA */
9, X'3047310b3009060355040613024348311b3019060355040a13127374726f6e675377616e2050726f6a656374311b3019060355040313127374726f6e675377616e20526f6f74204341'
);
INSERT INTO identities (
type, data
) VALUES ( /* subjkey of 'C=CH, O=strongSwan Project, CN=strongSwan Root CA' */
11, X'CA_SPK_HEX'
);
INSERT INTO identities (
type, data
) VALUES ( /* keyid of 'C=CH, O=strongSwan Project, CN=strongSwan Root CA' */
11, X'CA_SPKI_HEX'
);
INSERT INTO identities (
type, data
) VALUES ( /* venus.strongswan.org */
2, X'76656e75732e7374726f6e677377616e2e6f7267'
);
INSERT INTO identities (
type, data
) VALUES ( /* sun.strongswan.org */
2, X'73756e2e7374726f6e677377616e2e6f7267'
);
INSERT INTO identities (
type, data
) VALUES ( /* subjkey of 'C=CH, O=strongSwan Project, CN=venus.strongswan.org' */
11, X'VENUS_SPK_HEX'
);
INSERT INTO identities (
type, data
) VALUES ( /* %any */
0, '%any'
);
/* Certificates */
INSERT INTO certificates (
type, keytype, data
) VALUES ( /* C=CH, O=strongSwan Project, CN=strongSwan Root CA */
1, 1, X'CA_CERT_HEX'
);
INSERT INTO certificates (
type, keytype, data
) VALUES ( /* C=CH, O=strongSwan Project, CN=venus.strongswan.org */
1, 1, X'VENUS_CERT_HEX'
);
INSERT INTO certificate_identity (
certificate, identity
) VALUES (
1, 1
);
INSERT INTO certificate_identity (
certificate, identity
) VALUES (
1, 2
);
INSERT INTO certificate_identity (
certificate, identity
) VALUES (
1, 3
);
INSERT INTO certificate_identity (
certificate, identity
) VALUES (
2, 4
);
INSERT INTO certificate_identity (
certificate, identity
) VALUES (
2, 6
);
/* Private Keys */
INSERT INTO private_keys (
type, data
) VALUES ( /* key of 'C=CH, O=strongSwan Project, CN=venus.strongswan.org' */
1, X'VENUS_KEY_HEX'
);
INSERT INTO private_key_identity (
private_key, identity
) VALUES (
1, 4
);
INSERT INTO private_key_identity (
private_key, identity
) VALUES (
1, 6
);
/* Configurations */
INSERT INTO ike_configs (
local, remote
) VALUES (
'PH_IP_VENUS', 'PH_IP_SUN'
);
INSERT INTO ike_configs (
local, remote
) VALUES (
'%any', '%any'
);
INSERT INTO peer_configs (
name, ike_cfg, local_id, remote_id, virtual
) VALUES (
'nat-t', 1, 4, 5, '0.0.0.0'
);
INSERT INTO peer_configs (
name, ike_cfg, local_id, remote_id, auth_method
) VALUES (
'shunts', 2, 7, 7, 0
);
INSERT INTO child_configs (
name
) VALUES (
'nat-t'
);
INSERT INTO child_configs (
name, mode, start_action
) VALUES (
'local-net', 4, 1
);
INSERT INTO peer_config_child_config (
peer_cfg, child_cfg
) VALUES (
1, 1
);
INSERT INTO peer_config_child_config (
peer_cfg, child_cfg
) VALUES (
2, 2
);
INSERT INTO traffic_selectors (
type, start_addr, end_addr
) VALUES ( /* 10.1.0.0/16 */
7, X'0a010000', X'0a01ffff'
);
INSERT INTO traffic_selectors (
type, start_addr, end_addr
) VALUES ( /* 0.0.0.0/0 */
7, X'00000000', X'ffffffff'
);
INSERT INTO traffic_selectors (
type
) VALUES ( /* dynamic/32 */
7
);
INSERT INTO child_config_traffic_selector (
child_cfg, traffic_selector, kind
) VALUES (
1, 2, 1
);
INSERT INTO child_config_traffic_selector (
child_cfg, traffic_selector, kind
) VALUES (
1, 3, 2
);
INSERT INTO child_config_traffic_selector (
child_cfg, traffic_selector, kind
) VALUES (
2, 1, 0
);
INSERT INTO child_config_traffic_selector (
child_cfg, traffic_selector, kind
) VALUES (
2, 1, 1
);
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>