[dpdk-dev] [PATCH v3 1/2] examples/ipsec-secgw: add configuration file support

Sergio Gonzalez Monroy sergio.gonzalez.monroy at intel.com
Tue Jul 19 10:19:43 CEST 2016

Previous message: [dpdk-dev] [PATCH v3 1/2] examples/ipsec-secgw: add configuration file support
Next message: [dpdk-dev] [PATCH v3 2/2] examples/ipsec-secgw: add sample configuration files
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On 12/07/2016 10:44, Fan Zhang wrote:
> This patch adds the configuration file support to ipsec_secgw
> sample application. Instead of hard-coded rules, the users can
> specify their own SP, SA, and routing rules in the configuration
> file. An command line option "-f" is added to pass the
> configuration file location to the application.
>
> Configuration item formats:
>
> SP rule format:
> sp <ip_ver> <dir> esp <action> <priority> <src_ip> <dst_ip> \
> <proto> <sport> <dport>
>
> SA rule format:
> sa <dir> <spi> <cipher_algo> <auth_algo> <mode> <src_ip> <dst_ip>

I think we should be able to set the key also on config file for both 
cipher and auth.
Then we can check that the key size is the expected by the chosen 
cipher/auth algo.

I think we should also create and set the xforms dynamically instead of 
static as
they currently are (sa_add_rules function).

Sergio

> Routing rule format:
> rt <ip_ver> <src_ip> <dst_ip> <port>
>
> Signed-off-by: Fan Zhang <roy.fan.zhang at intel.com>
> ---

Previous message: [dpdk-dev] [PATCH v3 1/2] examples/ipsec-secgw: add configuration file support
Next message: [dpdk-dev] [PATCH v3 2/2] examples/ipsec-secgw: add sample configuration files
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the dev mailing list