diff options
| author |   angelos <angelos@openbsd.org> | 2000-09-29 19:11:43 +0000 |
|---|---|---|
| committer | angelos <angelos@openbsd.org> | 2000-09-29 19:11:43 +0000 |
| commit | b9108650ef7f39f277b9b0334c5c14570b6c01dc (patch) | |
| tree | ae631684a60b9f2f605746f6faf278487f0c305c | |
| parent | Update. (diff) | |
| download | wireguard-openbsd-b9108650ef7f39f277b9b0334c5c14570b6c01dc.tar.xz wireguard-openbsd-b9108650ef7f39f277b9b0334c5c14570b6c01dc.zip | |
Update to ipsecadm changes.
| -rw-r--r-- | share/ipsec/rc.vpn | 18 |
1 files changed, 9 insertions, 9 deletions
diff --git a/share/ipsec/rc.vpn b/share/ipsec/rc.vpn index dc1546241d1..272ab2cf1ea 100644 --- a/share/ipsec/rc.vpn +++ b/share/ipsec/rc.vpn @@ -1,7 +1,7 @@ #!/bin/sh # -# $OpenBSD: rc.vpn,v 1.13 2000/09/27 04:36:55 angelos Exp $ +# $OpenBSD: rc.vpn,v 1.14 2000/09/29 19:11:43 angelos Exp $ # # Richard Reiner, Ph.D., FSC Internet Corp. # rreiner@fscinternet.com @@ -84,9 +84,9 @@ $DEBUG $ipsecadm new esp -src $GW_PEER -dst $GW_LOCAL \ # # Gateway to gateway (both egress and ingress flows) -$DEBUG $ipsecadm flow -proto esp -src $GW_LOCAL -dst $GW_PEER -spi $SPI_OUT \ +$DEBUG $ipsecadm flow -proto esp -src $GW_LOCAL -dst $GW_PEER \ -addr $GW_LOCAL 255.255.255.255 $GW_PEER 255.255.255.255 -out -require -$DEBUG $ipsecadm flow -proto esp -src $GW_LOCAL -dst $GW_PEER -spi $SPI_IN \ +$DEBUG $ipsecadm flow -proto esp -src $GW_LOCAL -dst $GW_PEER \ -addr $GW_PEER 255.255.255.255 $GW_LOCAL 255.255.255.255 -in -require # Flows from each local to each remote subnet, and vice versa for @@ -108,12 +108,12 @@ do remote_mask=$2 if [ "${remote_net}" != "0x0" ]; then $DEBUG $ipsecadm flow \ - -proto esp -src $GW_LOCAL -dst $GW_PEER -spi $SPI_OUT \ + -proto esp -src $GW_LOCAL -dst $GW_PEER \ -addr $local_net $local_mask $remote_net $remote_mask \ -out -require $DEBUG $ipsecadm flow \ - -proto esp -src $GW_LOCAL -dst $GW_PEER -spi $SPI_IN \ + -proto esp -src $GW_LOCAL -dst $GW_PEER \ -in -require \ -addr $remote_net $remote_mask $local_net $local_mask peercount=$(($peercount + 1)) @@ -139,12 +139,12 @@ do remote_mask=$2 if [ "${remote_net}" != "0x0" ]; then $DEBUG $ipsecadm flow \ - -proto esp -dst $GW_PEER -spi $SPI_OUT -out -require \ + -proto esp -dst $GW_PEER -out -require \ -src $GW_LOCAL \ -addr $GW_LOCAL 255.255.255.255 $remote_net $remote_mask \ $DEBUG $ipsecadm flow \ - -proto esp -dst $GW_PEER -spi $SPI_IN -in -require \ + -proto esp -dst $GW_PEER -in -require \ -src $GW_LOCAL \ -addr $remote_net $remote_mask $GW_LOCAL 255.255.255.255 peercount=$(($peercount + 1)) @@ -163,12 +163,12 @@ do local_mask=$2 if [ "${local_net}" != "0x0" ]; then $DEBUG $ipsecadm flow \ - -proto esp -dst $GW_PEER -spi $SPI_OUT -out -require \ + -proto esp -dst $GW_PEER -out -require \ -src $GW_LOCAL \ -addr $local_net $local_mask $GW_PEER 255.255.255.255 $DEBUG $ipsecadm flow \ - -proto esp -dst $GW_PEER -spi $SPI_IN -in -require \ + -proto esp -dst $GW_PEER -in -require \ -src $GW_LOCAL \ -addr $GW_PEER 255.255.255.255 $local_net $local_mask mycount=$(($mycount + 1)) |