Title | 5.2.3 Host transport mode, ESP=3DES-CBC NULL |
CommandLine | ./p2_HTR_E_Common.seq -pkt ./p2_HTR_E_ICMP_common.def test_type=ADVANCED support=3DES_CBC_NULL_SUPPORT ealgo=3des-cbc eauth=null einkey=E_3descbc_in_key ainkey=A_null_in_key eoutkey=E_3descbc_out_key aoutkey=A_null_out_key ealgo_from=ealgo_3descbc_null_in ealgo_to=ealgo_3descbc_null_out -log 16.html -ti 5.2.3 Host transport mode, ESP=3DES-CBC NULL |
TestVersion | V6PC_P2_IPsec_1_1_2 |
ToolVersion | REL_3_0_12 |
Start | 2008/05/06 11:01:12 |
Tn | /usr/local/v6eval//etc//tn.def |
Nu | /usr/local/v6eval//etc//nut.def |
Pkt | ./p2_HTR_E_ICMP_common.def |
System | rhel51 |
TargetName | RHEL5.1 |
HostName | IPv6testee2.nay.redhat.com |
Type | host |
11:01:12 | Start |
*** Target initialization phase *** Target: Clear all SAD and SPD entries |
|
11:01:12 |
vRemote(ipsecClearAll.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecClearAll.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 ''
Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdflush; flush;' | setkey -c'' command /bin/echo 'spdflush; flush;' | setkey -c sendMessagesSync: got echo back of /bin/echo 'spdflush; flush;' | setkey -c rCommand: Try to get command prompt (0.2 sec) [root@IPv6testee2 ~]# rCommand: CmdOutput=`` [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
11:01:13 | Start Capturing Packets (Link0) |
Target: Set SAD entries: src="3ffe:501:ffff:0001:0000:0000:0000:0001" dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" spi=0x1000 mode=transport protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcin01 eauth=null eauthkey= | |
11:01:13 |
vRemote(ipsecSetSAD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSAD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src="3ffe:501:ffff:0001:0000:0000:0000:0001"
dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" spi=0x1000 mode=transport
protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcin01
eauth=null eauthkey= ''
eval $main::rOpt_src='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_dst='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_spi='0x1000' eval $main::rOpt_mode='transport' eval $main::rOpt_protocol='esp' eval $main::rOpt_ealgo='3des-cbc' eval $main::rOpt_ealgokey='ipv6readylogo3descbcin01' eval $main::rOpt_eauth='null' eval $main::rOpt_eauthkey='1' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E 3des-cbc "ipv6readylogo3descbcin01" -A null "1"; dump;' | setkey -c'' command /bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe :501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E 3des-cbc "ipv6readylog o3descbcin01" -A null "1"; dump;' | setkey -c line 0: syntax error at [1] No SAD entries. [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E 3des-cbc "ipv6readylogo3descbcin01" -A null "1"; dump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'add 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe :501:ffff:0:207:e9ff:fe0b:2841 esp 0x1000 -m transport -E 3des-cbc "ipv6readylog o3descbcin01" -A null "1"; dump;' | setkey -c line 0: syntax error at [1] No SAD entries. [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
Target: Set SPD entries: src="3ffe:501:ffff:0001:0000:0000:0000:0001" dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" upperspec=any direction=in protocol=esp-auth mode=transport | |
11:01:18 |
vRemote(ipsecSetSPD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSPD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src="3ffe:501:ffff:0001:0000:0000:0000:0001"
dst="3ffe:501:ffff:0:207:e9ff:fe0b:2841" upperspec=any direction=in
protocol=esp-auth mode=transport ''
eval $main::rOpt_src='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_dst='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_upperspec='any' eval $main::rOpt_direction='in' eval $main::rOpt_protocol='esp-auth' eval $main::rOpt_mode='transport' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:0001:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' | setkey -c'' command /bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3 ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:00 01:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' | s etkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:24:11 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=216 seq=1 pid=5819 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:24:11 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=226 seq=0 pid=5819 refcnt=2 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:0001:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'spdadd 3ffe:501:ffff:0001:0000:0000:0000:0001 3 ffe:501:ffff:0:207:e9ff:fe0b:2841 any -P in ipsec esp/transport/3ffe:501:ffff:00 01:0000:0000:0000:0001-3ffe:501:ffff:0:207:e9ff:fe0b:2841/require; spddump;' | s etkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:24:11 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=216 seq=1 pid=5819 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:24:11 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=226 seq=0 pid=5819 refcnt=2 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
Target: Set SAD entries: src="3ffe:501:ffff:0:207:e9ff:fe0b:2841" dst="3ffe:501:ffff:0001:0000:0000:0000:0001" spi=0x2000 mode=transport protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcout1 eauth=null eauthkey= | |
11:01:23 |
vRemote(ipsecSetSAD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSAD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src="3ffe:501:ffff:0:207:e9ff:fe0b:2841"
dst="3ffe:501:ffff:0001:0000:0000:0000:0001" spi=0x2000 mode=transport
protocol=esp ealgo=3des-cbc ealgokey=ipv6readylogo3descbcout1
eauth=null eauthkey= ''
eval $main::rOpt_src='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_dst='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_spi='0x2000' eval $main::rOpt_mode='transport' eval $main::rOpt_protocol='esp' eval $main::rOpt_ealgo='3des-cbc' eval $main::rOpt_ealgokey='ipv6readylogo3descbcout1' eval $main::rOpt_eauth='null' eval $main::rOpt_eauthkey='1' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E 3des-cbc "ipv6readylogo3descbcout1" -A null "1"; dump;' | setkey -c'' command /bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501 :ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E 3des-cbc "ipv6readylog o3descbcout1" -A null "1"; dump;' | setkey -c line 0: syntax error at [1] No SAD entries. [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E 3des-cbc "ipv6readylogo3descbcout1" -A null "1"; dump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'add 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501 :ffff:0001:0000:0000:0000:0001 esp 0x2000 -m transport -E 3des-cbc "ipv6readylog o3descbcout1" -A null "1"; dump;' | setkey -c line 0: syntax error at [1] No SAD entries. [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
Target: Set SPD entries: src="3ffe:501:ffff:0:207:e9ff:fe0b:2841" dst="3ffe:501:ffff:0001:0000:0000:0000:0001" upperspec=any direction=out protocol=esp-auth mode=transport | |
11:01:29 |
vRemote(ipsecSetSPD.rmt)
``/usr/local/v6eval//bin/rhel51//ipsecSetSPD.rmt -t rhel51 -u root -p
redhat -d cuad0 -o 1 src="3ffe:501:ffff:0:207:e9ff:fe0b:2841"
dst="3ffe:501:ffff:0001:0000:0000:0000:0001" upperspec=any
direction=out protocol=esp-auth mode=transport ''
eval $main::rOpt_src='3ffe:501:ffff:0:207:e9ff:fe0b:2841' eval $main::rOpt_dst='3ffe:501:ffff:0001:0000:0000:0000:0001' eval $main::rOpt_upperspec='any' eval $main::rOpt_direction='out' eval $main::rOpt_protocol='esp-auth' eval $main::rOpt_mode='transport' Connected prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogin: Wait for login prompt (0.2 sec)... rLogin: Never got prompt; try again rLogin: Wait for login prompt (50 sec)... [root@IPv6testee2 ~]# rLogin: Got command prompt rLogin: Got command prompt _rCommand: Try to get command prompt (0.2 sec.) _rCommand: (\$|#) _rCommand: command prompt... _rCommand: Try to get command prompt (30 sec.) _rCommand: (\$|#) [root@IPv6testee2 ~]# _rCommand: Do ``/bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0:207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' | setkey -c'' command /bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe: 501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0 :207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' | setkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:24:11 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=216 seq=2 pid=5831 refcnt=1 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:24:22 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=233 seq=1 pid=5831 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:24:11 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=226 seq=0 pid=5831 refcnt=1 [root@IPv6testee2 ~]# sendMessagesSync: never got /bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe:501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0:207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' | setkey -c rCommand: Try to get command prompt (0.2 sec) rCommand: CmdOutput=``/bin/echo 'spdadd 3ffe:501:ffff:0:207:e9ff:fe0b:2841 3ffe: 501:ffff:0001:0000:0000:0000:0001 any -P out ipsec esp/transport/3ffe:501:ffff:0 :207:e9ff:fe0b:2841-3ffe:501:ffff:0001:0000:0000:0000:0001/require; spddump;' | setkey -c 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any in prio def ipsec esp/transport//require created: Jan 15 23:24:11 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=216 seq=2 pid=5831 refcnt=1 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] 3ffe:501:ffff:1::1[any] any out prio def ipsec esp/transport//require created: Jan 15 23:24:22 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=233 seq=1 pid=5831 refcnt=2 3ffe:501:ffff:1::1[any] 3ffe:501:ffff:0:207:e9ff:fe0b:2841[any] any fwd prio def ipsec esp/transport//require created: Jan 15 23:24:11 2002 lastused: lifetime: 0(s) validtime: 0(s) spid=226 seq=0 pid=5831 refcnt=1 [root@IPv6testee2 ~]'' echo $?sendMessagesSync: got echo back of echo $? 0 [roorCommand: exit status: 0 prompt_user: ``login: '', prompt_password: ``Password: '', prompt_command: ``(\$|#) '' rLogout: skip by not specifing ``-l'' ~ [EOT] |
Target: Enable and start IPsec function | |
11:01:35 | vRemote(ipsecEnable.rmt) ``/usr/local/v6eval//bin/rhel51//ipsecEnable.rmt -t rhel51 -u root -p redhat -d cuad0 -o 1 '' |
*** Target testing phase *** |
|
11:01:35 | Clear Captured Packets (Link0) |
11:01:35 |
vSend(Link0,echo_request_from_host1_esp) Send Echo Request with ESP from HOST-1(TN) |
11:01:35 | vRecv(Link0,echo_reply_to_host1_esp
ns_to_router_linkaddr_w_linkaddr rs_from_nut rs_from_nut_wsll
ns_to_router_wo_sllopt ns_to_router_linkaddr ns_to_router
rs_from_nut_wunspec) timeout:3 cntLimit:0 seektime:0 vRecv() return status=1 |
TN received no echo reply from End-Node(NUT) to HOST-1(TN). NG |
|
11:01:38 | End |
Frame_Ether (length:94) | Hdr_Ether (length:14) | | DestinationAddress = 00:07:e9:0b:28:41 | | SourceAddress = 00:00:00:00:00:0f | | Type = 34525 | Packet_IPv6 (length:80) | | Hdr_IPv6 (length:40) | | | Version = 6 | | | TrafficClass = 0 | | | FlowLabel = 0 | | | PayloadLength = 40 | | | NextHeader = 50 | | | HopLimit = 64 | | | SourceAddress = 3ffe:501:ffff:1::1 | | | DestinationAddress = 3ffe:501:ffff:0:207:e9ff:fe0b:2841 | | Hdr_ESP (length:40) | | | SPI = 4096 | | | SequenceNumber = 1 | | | algorithm = ealgo_3descbc_null_in | | | IVEC = 00000000 00000000 | | | Decrypted (length:24) | | | | ESPPayload (length:22) | | | | | ICMPv6_EchoRequest (length:22) | | | | | | Type = 128 | | | | | | Code = 0 | | | | | | Checksum = 26848 calc(26848) | | | | | | Identifier = 0 | | | | | | SequenceNumber = 0 | | | | | | Payload (length:14) | | | | | | | data = 5061644c 656e2069 73205a65 726f | | | | Padding = | | | | PadLength = 0 | | | | NextHeader = 58 | | | ICV = calc()