HTR_E_In_null_hmacsha1 - Host Transport Mode ESP Inbound NULL with HMAC-SHA1 authentication
Host
HTR_E_In_null_hmacsha1.seq [-tooloption ...] -pkt HTR_E_null_hmacsha1.def -tooloption : v6eval tool option See also HTR_E_common.def and HTR_common.def
For details of Network Topology, see 00README
Set NUT's SAD and SPD as following:
NET5 NET3 HOST1_NET5 -- Router -- NUT -----transport----->
Security Association Database (SAD)
source address | HOST1_NET5 |
destination address | NUT_NET3 |
SPI | 0x1000 |
mode | transport |
protocol | ESP |
ESP algorithm | NULL |
ESP authentication | HMAC-SHA1 |
ESP authentication key | TAHITEST89ABCDEF0123 |
Security Policy Database (SPD)
source address | HOST1_NET5 |
destination address | NUT_NET3 |
upper spec | any |
direction | in |
protocol | ESP |
mode | transport |
Tester Target | | |-------------------------->| | ICMP Echo Request | | (with ESP) | | | |<--------------------------| | ICMP Echo Reply | | | v v
ICMP Echo Request with ESP
IP Header | Source Address | HOST1_NET5 |
Destination Address | NUT_NET3 | |
ESP | SPI | 0x1000 |
Algorithm | NULL | |
Authentication Algorithm | HMAC-SHA1 | |
Authentication Key | TAHITEST89ABCDEF0123 | |
ICMP | Type | 128 (Echo Request) |
ICMP Echo Reply
IP Header | Source Address | NUT_NET3 |
Destination Address | HOST1_NET5 | |
ICMP | Type | 129 (Echo Reply) |
PASS: ICMP Echo Reply received
perldoc V6evalTool
IPSEC.html IPsec Test Common Utility