Update.

author: angelos <angelos@openbsd.org> 2000-09-29 19:00:31 +0000
committer: angelos <angelos@openbsd.org> 2000-09-29 19:00:31 +0000
commit: 264de04124c083d3e06b1fe93f8fe3a28c9bd479 (patch)
tree: 3411236e4c485912962ca07c8351f61ba2c45100
parent: Don't use an SA payload for ADDFLOW/DELFLOW. (diff)
download: wireguard-openbsd-264de04124c083d3e06b1fe93f8fe3a28c9bd479.tar.xz
wireguard-openbsd-264de04124c083d3e06b1fe93f8fe3a28c9bd479.zip
1 files changed, 33 insertions, 33 deletions
diff --git a/share/man/man8/vpn.8 b/share/man/man8/vpn.8
index ef5146624f1..a039b85c4fc 100644
--- a/share/man/man8/vpn.8
+++ b/share/man/man8/vpn.8
@@ -1,4 +1,4 @@
-.\" $OpenBSD: vpn.8,v 1.43 2000/09/29 04:03:13 angelos Exp $
+.\" $OpenBSD: vpn.8,v 1.44 2000/09/29 19:00:31 angelos Exp $
 .\" Copyright 1998 Niels Provos <provos@physnet.uni-hamburg.de>
 .\" All rights reserved.
 .\"
@@ -184,36 +184,36 @@ tool:
 .Pp
 On the security gateway of subnet A:
 .Bd -literal
-ipsecadm flow -dst B_EXTERNAL_IP -spi SPI_AB -proto esp
+ipsecadm flow -dst B_EXTERNAL_IP -proto esp
          -addr A_EXTERNAL_IP 255.255.255.255
                B_EXTERNAL_IP 255.255.255.255
          -require -out -src A_EXTERNAL_IP
-ipsecadm flow -dst B_EXTERNAL_IP -spi SPI_AB -proto esp
+ipsecadm flow -dst B_EXTERNAL_IP -proto esp
          -addr A_INTERNAL_NETWORK A_INTERNAL_NETMASK
                B_INTERNAL_NETWORK B_INTERNAL_NETMASK
          -require -out -src A_EXTERNAL_IP
-ipsecadm flow -dst B_EXTERNAL_IP -spi SPI_AB -proto esp
+ipsecadm flow -dst B_EXTERNAL_IP -proto esp
          -addr A_EXTERNAL_IP 255.255.255.255
                B_INTERNAL_NETWORK B_INTERNAL_NETMASK
          -require -out -src A_EXTERNAL_IP
-ipsecadm flow -dst B_EXTERNAL_IP -spi SPI_AB -proto esp
+ipsecadm flow -dst B_EXTERNAL_IP -proto esp
          -addr A_INTERNAL_NETWORK A_INTERNAL_NETMASK
                B_EXTERNAL_IP 255.255.255.255
          -require -out -src A_EXTERNAL_IP
 
-ipsecadm flow -dst B_EXTERNAL_IP -spi SPI_BA -proto esp
+ipsecadm flow -dst B_EXTERNAL_IP -proto esp
          -addr B_EXTERNAL_IP 255.255.255.255
                A_EXTERNAL_IP 255.255.255.255 
          -require -in -src A_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_BA -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr B_INTERNAL_NETWORK B_INTERNAL_NETMASK
                A_INTERNAL_NETWORK A_INTERNAL_NETMASK
          -require -in -src A_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_BA -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr B_EXTERNAL_IP 255.255.255.255
                A_INTERNAL_NETWORK A_INTERNAL_NETMASK
          -require -in -src A_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_BA -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr B_INTERNAL_NETWORK B_INTERNAL_NETMASK
                A_EXTERNAL_IP 255.255.255.255
          -require -in -src A_EXTERNAL_IP
@@ -221,36 +221,36 @@ ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_BA -proto esp
 .Pp
 and on the security gateway of subnet B:
 .Bd -literal
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_BA -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr B_EXTERNAL_IP 255.255.255.255
                A_EXTERNAL_IP 255.255.255.255
          -out -require -src B_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_BA -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr B_INTERNAL_NETWORK B_INTERNAL_NETMASK
                A_INTERNAL_NETWORK A_INTERNAL_NETMASK
          -out -require -src B_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_BA -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr B_EXTERNAL_IP 255.255.255.255
                A_INTERNAL_NETWORK A_INTERNAL_NETMASK
          -out -require -src B_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_BA -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr B_INTERNAL_NETWORK B_INTERNAL_NETMASK
                A_EXTERNAL_IP 255.255.255.255
          -out -require -src B_EXTERNAL_IP
 
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_AB -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr A_EXTERNAL_IP 255.255.255.255
                B_EXTERNAL_IP 255.255.255.255
          -in -require -src B_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_AB -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr A_INTERNAL_NETWORK A_INTERNAL_NETMASK
                B_INTERNAL_NETWORK B_INTERNAL_NETMASK
          -in -require -src B_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_AB -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr A_EXTERNAL_IP 255.255.255.255
                B_INTERNAL_NETWORK B_INTERNAL_NETMASK
          -in -require -src B_EXTERNAL_IP
-ipsecadm flow -dst A_EXTERNAL_IP -spi SPI_AB -proto esp
+ipsecadm flow -dst A_EXTERNAL_IP -proto esp
          -addr A_INTERNAL_NETWORK A_INTERNAL_NETMASK
                B_EXTERNAL_IP 255.255.255.255
          -in -require -src B_EXTERNAL_IP
@@ -361,71 +361,71 @@ outbound flows, the latter four are the ingress filters for the
 incoming security association):
 .Pp
 .Bd -literal
-# /sbin/ipsecadm flow -dst 192.168.2.1 -spi 1001 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.2.1 -proto esp \e\ 
     -addr 192.168.1.254 255.255.255.255 \e\ 
           192.168.2.1 255.255.255.255 -out -require -src 192.168.1.254
 
-# /sbin/ipsecadm flow -dst 192.168.2.1 -spi 1001 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.2.1 -proto esp \e\ 
     -addr 10.0.50.0 255.255.255.0 10.0.99.0 255.255.255.0 \e\
     -require -out -src 192.168.1.254
 
-# /sbin/ipsecadm flow -dst 192.168.2.1 -spi 1001 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.2.1 -proto esp \e\ 
     -addr 192.168.1.254 255.255.255.255 \e\ 
           10.0.99.0 255.255.255.0 -require -out -src 192.168.1.254
 
-# /sbin/ipsecadm flow -dst 192.168.2.1 -spi 1001 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.2.1 -proto esp \e\ 
     -addr 10.0.50.0 255.255.255.0 192.168.2.1 255.255.255.255 \e\
     -require -out -src 192.168.1.254
 
-# /sbin/ipsecadm flow -dst 192.168.2.1 -spi 1000 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.2.1 -proto esp \e\ 
     -addr 192.168.2.1 255.255.255.255 \e\ 
           192.168.1.254 255.255.255.255 -require -in -src 192.168.1.254
 
-# /sbin/ipsecadm flow -dst 192.168.2.1 -spi 1000 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.2.1 -proto esp \e\ 
     -addr 10.0.99.0 255.255.255.0 10.0.50.0 255.255.255.0 \e\
     -require -in -src 192.168.1.254
 
-# /sbin/ipsecadm flow -dst 192.168.2.1 -spi 1000 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.2.1 -proto esp \e\ 
      -addr 192.168.2.1 255.255.255.255 \e\ 
            10.0.50.0 255.255.255.0 -require -in -src 192.168.1.254
 
-# /sbin/ipsecadm flow -dst 192.168.2.1 -spi 1000 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.2.1 -proto esp \e\ 
      -addr 10.0.99.0 255.255.255.0 \e\ 
 	   192.168.1.254 255.255.255.255 -require -in -src 192.168.1.254
 .Ed
 .It
 Create the ipsec flows on machine B:
 .Bd -literal
-# /sbin/ipsecadm flow -dst 192.168.1.254 -spi 1000 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.1.254 -proto esp \e\ 
     -addr 192.168.2.1 255.255.255.255 \e\ 
           192.168.1.254 255.255.255.255 \e\
     -require -out -src 192.168.2.1
 
-# /sbin/ipsecadm flow -dst 192.168.1.254 -spi 1000 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.1.254 -proto esp \e\ 
     -addr 10.0.99.0 255.255.255.0 10.0.50.0 255.255.255.0 \e\
     -require -out -src 192.168.2.1
 
-# /sbin/ipsecadm flow -dst 192.168.1.254 -spi 1000 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.1.254 -proto esp \e\ 
      -addr 192.168.2.1 255.255.255.255 \e\ 
            10.0.50.0 255.255.255.0 -require -out -src 192.168.2.1
 
-# /sbin/ipsecadm flow -dst 192.168.1.254 -spi 1000 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.1.254 -proto esp \e\ 
      -addr 10.0.99.0 255.255.255.0 192.168.1.254 255.255.255.255 \e\
      -require -out -src 192.168.2.1
 
-# /sbin/ipsecadm flow -dst 192.168.1.254 -spi 1001 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.1.254 -proto esp \e\ 
     -addr 192.168.1.254 255.255.255.255 \e\ 
           192.168.2.1 255.255.255.255 -require -in -src 192.168.2.1
 
-# /sbin/ipsecadm flow -dst 192.168.1.254 -spi 1001 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.1.254 -proto esp \e\ 
     -addr 10.0.50.0 255.255.255.0 10.0.99.0 255.255.255.0 \e\
     -require -in -src 192.168.2.1
 
-# /sbin/ipsecadm flow -dst 192.168.1.254 -spi 1001 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.1.254 -proto esp \e\ 
     -addr 192.168.1.254 255.255.255.255 \e\ 
           10.0.99.0 255.255.255.0 -require -in -src 192.168.2.1
 
-# /sbin/ipsecadm flow -dst 192.168.1.254 -spi 1001 -proto esp \e\ 
+# /sbin/ipsecadm flow -dst 192.168.1.254 -proto esp \e\ 
     -addr 10.0.50.0 255.255.255.0 192.168.2.1 255.255.255.255 \e\
     -require -in -src 192.168.2.1
 .Ed
author	angelos <angelos@openbsd.org>	2000-09-29 19:00:31 +0000
committer	angelos <angelos@openbsd.org>	2000-09-29 19:00:31 +0000
commit	264de04124c083d3e06b1fe93f8fe3a28c9bd479 (patch)
tree	3411236e4c485912962ca07c8351f61ba2c45100
parent	Don't use an SA payload for ADDFLOW/DELFLOW. (diff)
download	wireguard-openbsd-264de04124c083d3e06b1fe93f8fe3a28c9bd479.tar.xz wireguard-openbsd-264de04124c083d3e06b1fe93f8fe3a28c9bd479.zip