ipsec_P_Inc_Rpl.sh

Go to the documentation of this file.

#!/bin/bash
#
# Proxy-CSCF SA for Incoming Requests ( US -> PC )
#
# \author Dragos Vingarzan vingarzan -at- fokus dot fraunhofer dot de
#

ue=$1
port_us=$2
pcscf=$3
port_pc=$4

spi_pc=$5

ealg=$6
ck=$7
alg=$8
ik=$9

if [ "$6" = "null" ] 
then
    ck=""
fi

setkey -c << EOF
spdadd $ue/32[$port_us] $pcscf/32[$port_pc] tcp -P in ipsec esp/transport//require ;
spdadd $ue/32[$port_us] $pcscf/32[$port_pc] udp -P in ipsec esp/transport//require ;
add $ue $pcscf esp $spi_pc -m transport -E $ealg $ck -A $alg $ik ;
EOF

---