// // $Copyright$ // // $Name: $ // // $Id: HTR_A_DM_RH.def,v 1.1.1.1 2000/09/28 00:14:46 sekiya Exp $ // // // Network topology // -----> HOST1_NET3 // HOST1 -----> Router -----> NUT // NET5 NET3 #include "./HTR_A_common.def" //====================================================================== // // AH/ESP definition // //====================================================================== // // Routing Header // Hdr_Routing rh_H1_to_R { SegmentsLeft = 1; Address = v6(IPSEC_NUT_NET3_ADDR); } Hdr_Routing rh_R_to_NUT { SegmentsLeft = 0; Address = v6(IPSEC_ROUTER_NET5_ADDR); } Hdr_Routing rh_R_to_H1N3 { SegmentsLeft = 0; Address = v6(IPSEC_ROUTER_NET5_ADDR); } //====================================================================== // // Real packet definition with IPsec AH // FEM_icmp6_echo_request_exth( echo_request_from_host1_rh_ah, hether_router2nut, { _SRC(v6(IPSEC_HOST1_NET5_ADDR)); _DST(v6(IPSEC_NUT_NET3_ADDR)); }, { header = _HDR_IPV6_NAME(echo_request_from_host1_rh_ah); exthdr = rh_R_to_NUT; exthdr = ah_from_host_sn2; upper = _ICMPV6_NAME(echo_request_from_host1_rh_ah); }, { payload = IPSEC_ECHO_DATA; } ) FEM_icmp6_echo_request_exth( echo_request_from_host1_ah_real1, hether_router2nut, { _SRC(v6(IPSEC_HOST1_NET5_ADDR)); _DST(v6(IPSEC_HOST1_NET3_ADDR)); // this address will be modified to // _DST(v6(IPSEC_NUT_NET3_ADDR)); // this address in }, { header = _HDR_IPV6_NAME(echo_request_from_host1_ah_real1); exthdr = rh_R_to_H1N3; exthdr = ah_from_host_sn3; upper = _ICMPV6_NAME(echo_request_from_host1_ah_real1); }, { payload = IPSEC_ECHO_DATA; } ) FEM_icmp6_echo_request_exth( echo_request_from_host1_ah_real2, hether_router2nut, { _SRC(v6(IPSEC_HOST1_NET5_ADDR)); _DST(v6(IPSEC_NUT_NET3_ADDR)); }, { header = _HDR_IPV6_NAME(echo_request_from_host1_ah_real2); exthdr = rh_R_to_NUT; //RH last router address will be modified exthdr = ah_from_host_sn4; upper = _ICMPV6_NAME(echo_request_from_host1_ah_real2); }, { payload = IPSEC_ECHO_DATA; } ) //====================================================================== // // Modified packet definition with IPsec AH // // Common use Ether Header Hdr_Ether hether_router2nut_0x86dd { SourceAddress=ether(IPSEC_ROUTER_NET3_MAC_ADDR); DestinationAddress=nutether(); Type=0x86dd; // need to specify IPv6 } // IPv6 Dst address is modified Frame_Ether echo_request_from_host1_ah_dm_rh_ipv6h_dst { header=hether_router2nut_0x86dd; packet=echo_request_from_host1_ah_modpkt1; } Payload echo_request_from_host1_ah_modpkt1 { data=substr(echo_request_from_host1_ah_real1, 14, 38); data={0xb0,0xb0}; // modify dstaddr IPSEC_HOST1_NET3_ADDR -> IPSEC_NUT_NET3_ADDR data=substr(echo_request_from_host1_ah_real1, 54, 48); //RH,AH data=substr(echo_request_from_host1_ah_real1, 102, 2); //ICMP data={0xa0,0xa3}; // correct ICMP checksum data=substr(echo_request_from_host1_ah_real1, 106, 12); //ICMP } // RH last router address is modified Frame_Ether echo_request_from_host1_ah_dm_rh_lastaddr { header=hether_router2nut_0x86dd; packet=echo_request_from_host1_ah_modpkt2; } Payload echo_request_from_host1_ah_modpkt2 { data=substr(echo_request_from_host1_ah_real2, 14, 62); data={0xc1,0xc1}; // modify dstaddr IPSEC_ROUTER_NET5_ADDR -> IPSEC_HOST1_NET5_ADDR data=substr(echo_request_from_host1_ah_real2, 78, 40); }