Last active
March 6, 2019 10:34
-
-
Save james-masson/347bcdab80c93c83dfc68f111a5cb472 to your computer and use it in GitHub Desktop.
strongswan
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| conn default | |
| ike=aes128gcm16-prfsha256-ecp256! | |
| esp=aes128gcm16-prfsha256-ecp256! | |
| keyexchange=ikev2 | |
| ikelifetime=60m | |
| keylife=20m | |
| rekeymargin=3m | |
| keyingtries=%forever | |
| mobike=no | |
| conn transport-mode-out | |
| also=default | |
| left=${MY_IP} | |
| right=%any | |
| rightsubnet=10.32.0.0/16[/10000],10.32.0.0/16[/10001],10.32.0.0/16[/10002],10.32.0.0/16[/10003],10.32.0.0/16[/10004],10.32.0.0/16[/10005],10.32.0.0/16[/10006],10.32.0.0/16[/10007] | |
| type=transport | |
| authby=psk | |
| auto=route | |
| conn transport-mode-in | |
| also=default | |
| left=${MY_IP} | |
| right=%any | |
| leftsubnet=10.32.0.0/16[/10000],10.32.0.0/16[/10001],10.32.0.0/16[/10002],10.32.0.0/16[/10003],10.32.0.0/16[/10004],10.32.0.0/16[/10005],10.32.0.0/16[/10006],10.32.0.0/16[/10007] | |
| rightsubnet=10.32.0.0/16 | |
| type=transport | |
| authby=psk | |
| auto=add | |
| root@ipsec:/# ipsec statusall | |
| Status of IKE charon daemon (strongSwan 5.7.2, Linux 4.14.97-90.72.amzn2.x86_64, x86_64): | |
| uptime: 5 minutes, since Mar 06 10:27:47 2019 | |
| malloc: sbrk 2568192, mmap 0, used 1305008, free 1263184 | |
| worker threads: 11 of 16 idle, 5/0/0/0 working, job queue: 0/0/0/0, scheduled: 107 | |
| loaded plugins: charon aesni aes rc2 sha2 sha1 md5 mgf1 random nonce x509 revocation constraints pubkey pkcs1 pkcs7 pkcs8 pkcs12 pgp dnskey sshkey pem openssl fips-prf gmp agent xcbc hmac gcm attr kernel-netlink resolve socket-default connmark stroke updown counters | |
| Listening IP addresses: | |
| 10.32.1.10 | |
| 172.17.0.1 | |
| Connections: | |
| transport-mode-out: %any...%any IKEv2 | |
| transport-mode-out: local: uses pre-shared key authentication | |
| transport-mode-out: remote: uses pre-shared key authentication | |
| transport-mode-out: child: dynamic === 10.32.0.0/16[0/10000] 10.32.0.0/16[0/10001] 10.32.0.0/16[0/10002] 10.32.0.0/16[0/10003] 10.32.0.0/16[0/10004] 10.32.0.0/16[0/10005] 10.32.0.0/16[0/10006] 10.32.0.0/16[0/10007] TRANSPORT | |
| transport-mode-in: child: 10.32.0.0/16[0/10000] 10.32.0.0/16[0/10001] 10.32.0.0/16[0/10002] 10.32.0.0/16[0/10003] 10.32.0.0/16[0/10004] 10.32.0.0/16[0/10005] 10.32.0.0/16[0/10006] 10.32.0.0/16[0/10007] === dynamic TRANSPORT | |
| Routed Connections: | |
| transport-mode-out{1}: ROUTED, TRANSPORT, reqid 1 | |
| transport-mode-out{1}: 0.0.0.0/0 === 10.32.0.0/16[0/10000] 10.32.0.0/16[0/10001] 10.32.0.0/16[0/10002] 10.32.0.0/16[0/10003] 10.32.0.0/16[0/10004] 10.32.0.0/16[0/10005] 10.32.0.0/16[0/10006] 10.32.0.0/16[0/10007] | |
| Security Associations (6 up, 0 connecting): | |
| transport-mode-out[41]: ESTABLISHED 3 seconds ago, 10.32.1.10[10.32.1.10]...10.32.2.10[10.32.2.10] | |
| transport-mode-out[41]: IKEv2 SPIs: 0b5740c26e0056f8_i* c76b31c6e6458002_r, pre-shared key reauthentication in 53 minutes | |
| transport-mode-out[41]: IKE proposal: AES_GCM_16_128/PRF_HMAC_SHA2_256/ECP_256 | |
| transport-mode-out{42}: INSTALLED, TRANSPORT, reqid 1, ESP SPIs: c1f61228_i ce734fcd_o | |
| transport-mode-out{42}: AES_GCM_16_128, 564 bytes_i (13 pkts, 0s ago), 2016 bytes_o (28 pkts, 2s ago), rekeying in 14 minutes | |
| transport-mode-out{42}: 10.32.1.10/32 === 10.32.2.10/32[0/10000] 10.32.2.10/32[0/10001] 10.32.2.10/32[0/10002] 10.32.2.10/32[0/10003] 10.32.2.10/32[0/10004] 10.32.2.10/32[0/10005] 10.32.2.10/32[0/10006] 10.32.2.10/32[0/10007] | |
| transport-mode-out[40]: ESTABLISHED 8 seconds ago, 10.32.1.10[10.32.1.10]...10.32.3.10[10.32.3.10] | |
| transport-mode-out[40]: IKEv2 SPIs: ff975d0461dc15e3_i 165e2a7660d6db87_r*, pre-shared key reauthentication in 56 minutes | |
| transport-mode-out[40]: IKE proposal: AES_GCM_16_128/PRF_HMAC_SHA2_256/ECP_256 | |
| transport-mode-in{41}: INSTALLED, TRANSPORT, reqid 24, ESP SPIs: c77841a2_i cbe26684_o | |
| transport-mode-in{41}: AES_GCM_16_128, 3000 bytes_i (75 pkts, 0s ago), 1628 bytes_o (37 pkts, 0s ago), rekeying in 16 minutes | |
| transport-mode-in{41}: 10.32.1.10/32[0/10000] 10.32.1.10/32[0/10001] 10.32.1.10/32[0/10002] 10.32.1.10/32[0/10003] 10.32.1.10/32[0/10004] 10.32.1.10/32[0/10005] 10.32.1.10/32[0/10006] 10.32.1.10/32[0/10007] === 10.32.3.10/32 | |
| transport-mode-out[39]: ESTABLISHED 13 seconds ago, 10.32.1.10[10.32.1.10]...10.32.2.10[10.32.2.10] | |
| transport-mode-out[39]: IKEv2 SPIs: 4c6985735d5782fc_i 9dd672e18b8232db_r*, pre-shared key reauthentication in 55 minutes | |
| transport-mode-out[39]: IKE proposal: AES_GCM_16_128/PRF_HMAC_SHA2_256/ECP_256 | |
| transport-mode-in{40}: INSTALLED, TRANSPORT, reqid 23, ESP SPIs: c455d73f_i ce9d34d2_o | |
| transport-mode-in{40}: AES_GCM_16_128, 10796 bytes_i (155 pkts, 0s ago), 7340 bytes_o (91 pkts, 0s ago), rekeying in 15 minutes | |
| transport-mode-in{40}: 10.32.1.10/32[0/10000] 10.32.1.10/32[0/10001] 10.32.1.10/32[0/10002] 10.32.1.10/32[0/10003] 10.32.1.10/32[0/10004] 10.32.1.10/32[0/10005] 10.32.1.10/32[0/10006] 10.32.1.10/32[0/10007] === 10.32.2.10/32 | |
| transport-mode-out[38]: ESTABLISHED 18 seconds ago, 10.32.1.10[10.32.1.10]...10.32.3.10[10.32.3.10] | |
| transport-mode-out[38]: IKEv2 SPIs: b7cfb4a71f64cd19_i* 791f85c00da5ed6b_r, pre-shared key reauthentication in 52 minutes | |
| transport-mode-out[38]: IKE proposal: AES_GCM_16_128/PRF_HMAC_SHA2_256/ECP_256 | |
| transport-mode-out{39}: INSTALLED, TRANSPORT, reqid 1, ESP SPIs: cfe23d11_i c869287c_o | |
| transport-mode-out{39}: AES_GCM_16_128, 3916 bytes_i (89 pkts, 0s ago), 28336 bytes_o (288 pkts, 0s ago), rekeying in 14 minutes | |
| transport-mode-out{39}: 10.32.1.10/32 === 10.32.3.10/32[0/10000] 10.32.3.10/32[0/10001] 10.32.3.10/32[0/10002] 10.32.3.10/32[0/10003] 10.32.3.10/32[0/10004] 10.32.3.10/32[0/10005] 10.32.3.10/32[0/10006] 10.32.3.10/32[0/10007] | |
| transport-mode-out[4]: ESTABLISHED 5 minutes ago, 10.32.1.10[10.32.1.10]...10.32.101.184[10.32.101.184] | |
| transport-mode-out[4]: IKEv2 SPIs: 22b1af2930a772cb_i 9eb7db1304649dd9_r*, pre-shared key reauthentication in 49 minutes | |
| transport-mode-out[4]: IKE proposal: AES_GCM_16_128/PRF_HMAC_SHA2_256/ECP_256 | |
| transport-mode-in{3}: INSTALLED, TRANSPORT, reqid 3, ESP SPIs: ce859dcd_i c09638c0_o | |
| transport-mode-in{3}: AES_GCM_16_128, 172176 bytes_i (3873 pkts, 0s ago), 63096 bytes_o (1434 pkts, 0s ago), rekeying in 10 minutes | |
| transport-mode-in{3}: 10.32.1.10/32[0/10000] 10.32.1.10/32[0/10001] 10.32.1.10/32[0/10002] 10.32.1.10/32[0/10003] 10.32.1.10/32[0/10004] 10.32.1.10/32[0/10005] 10.32.1.10/32[0/10006] 10.32.1.10/32[0/10007] === 10.32.101.184/32 | |
| transport-mode-out[3]: ESTABLISHED 5 minutes ago, 10.32.1.10[10.32.1.10]...10.32.1.164[10.32.1.164] | |
| transport-mode-out[3]: IKEv2 SPIs: f133780b261d0766_i 0a5fc970d0e93e43_r*, pre-shared key reauthentication in 50 minutes | |
| transport-mode-out[3]: IKE proposal: AES_GCM_16_128/PRF_HMAC_SHA2_256/ECP_256 | |
| transport-mode-in{2}: INSTALLED, TRANSPORT, reqid 2, ESP SPIs: ccca3276_i cf251886_o | |
| transport-mode-in{2}: AES_GCM_16_128, 3039152 bytes_i (7292 pkts, 0s ago), 63052 bytes_o (1433 pkts, 0s ago), rekeying in 9 minutes | |
| transport-mode-in{2}: 10.32.1.10/32[0/10000] 10.32.1.10/32[0/10001] 10.32.1.10/32[0/10002] 10.32.1.10/32[0/10003] 10.32.1.10/32[0/10004] 10.32.1.10/32[0/10005] 10.32.1.10/32[0/10006] 10.32.1.10/32[0/10007] === 10.32.1.164/32 | |
| 09:24:33 06[IKE] <12102> 10.32.1.10 is initiating an IKE_SA | |
| 09:24:33 07[IKE] <transport-mode-out|12102> IKE_SA transport-mode-out[12102] established between 10.32.3.10[10.32.3.10]...10.32.1.10[10.32.1.10] | |
| 09:24:33 07[IKE] <transport-mode-out|12102> CHILD_SA transport-mode-in{12219} established with SPIs c9f797e9_i c8a7c952_o and TS 10.32.3.10/32[0/10000] 10.32.3.10/32[0/10001] 10.32.3.10/32[0/10002] 10.32.3.10/32[0/10003] 10.32.3.10/32[0/10004] 10.32.3.10/32[0/10005] 10.32.3.10/32[0/10006] 10.32.3.10/32[0/10007] === 10.32.1.10/32 | |
| 09:24:42 05[IKE] <transport-mode-out|12099> deleting IKE_SA transport-mode-out[12099] between 10.32.3.10[10.32.3.10]...10.32.2.10[10.32.2.10] | |
| 09:24:42 11[IKE] <transport-mode-out|12099> IKE_SA deleted | |
| 09:24:42 15[IKE] <transport-mode-out|12103> initiating IKE_SA transport-mode-out[12103] to 10.32.2.10 | |
| 09:24:42 06[IKE] <transport-mode-out|12103> establishing CHILD_SA transport-mode-out{12220} reqid 1 | |
| 09:24:42 07[IKE] <transport-mode-out|12103> IKE_SA transport-mode-out[12103] established between 10.32.3.10[10.32.3.10]...10.32.2.10[10.32.2.10] | |
| 09:24:42 07[IKE] <transport-mode-out|12103> CHILD_SA transport-mode-out{12220} established with SPIs cf6b6635_i ccc51a92_o and TS 10.32.3.10/32 === 10.32.2.10/32[0/10000] 10.32.2.10/32[0/10001] 10.32.2.10/32[0/10002] 10.32.2.10/32[0/10003] 10.32.2.10/32[0/10004] 10.32.2.10/32[0/10005] 10.32.2.10/32[0/10006] 10.32.2.10/32[0/10007] | |
| 09:24:43 16[IKE] <transport-mode-out|12100> deleting IKE_SA transport-mode-out[12100] between 10.32.3.10[10.32.3.10]...10.32.1.10[10.32.1.10] | |
| 09:24:43 13[IKE] <transport-mode-out|12100> IKE_SA deleted | |
| 09:24:43 08[IKE] <transport-mode-out|12104> initiating IKE_SA transport-mode-out[12104] to 10.32.1.10 | |
| 09:24:43 09[IKE] <transport-mode-out|12104> establishing CHILD_SA transport-mode-out{12221} reqid 1 | |
| 09:24:43 05[IKE] <transport-mode-out|12104> IKE_SA transport-mode-out[12104] established between 10.32.3.10[10.32.3.10]...10.32.1.10[10.32.1.10] | |
| 09:24:43 05[IKE] <transport-mode-out|12104> CHILD_SA transport-mode-out{12221} established with SPIs c89abe6f_i cc258374_o and TS 10.32.3.10/32 === 10.32.1.10/32[0/10000] 10.32.1.10/32[0/10001] 10.32.1.10/32[0/10002] 10.32.1.10/32[0/10003] 10.32.1.10/32[0/10004] 10.32.1.10/32[0/10005] 10.32.1.10/32[0/10006] 10.32.1.10/32[0/10007] | |
| 09:24:52 14[IKE] <transport-mode-out|12101> deleting IKE_SA transport-mode-out[12101] between 10.32.3.10[10.32.3.10]...10.32.2.10[10.32.2.10] | |
| 09:24:52 14[IKE] <transport-mode-out|12101> IKE_SA deleted | |
| 09:24:52 09[IKE] <12105> 10.32.2.10 is initiating an IKE_SA | |
| 09:24:52 05[IKE] <transport-mode-out|12105> IKE_SA transport-mode-out[12105] established between 10.32.3.10[10.32.3.10]...10.32.2.10[10.32.2.10] | |
| 09:24:52 05[IKE] <transport-mode-out|12105> CHILD_SA transport-mode-in{12222} established with SPIs c27b2e73_i c23651c5_o and TS 10.32.3.10/32[0/10000] 10.32.3.10/32[0/10001] 10.32.3.10/32[0/10002] 10.32.3.10/32[0/10003] 10.32.3.10/32[0/10004] 10.32.3.10/32[0/10005] 10.32.3.10/32[0/10006] 10.32.3.10/32[0/10007] === 10.32.2.10/32 | |
| 09:24:53 06[IKE] <transport-mode-out|12102> deleting IKE_SA transport-mode-out[12102] between 10.32.3.10[10.32.3.10]...10.32.1.10[10.32.1.10] | |
| 09:24:53 06[IKE] <transport-mode-out|12102> IKE_SA deleted | |
| 09:24:53 07[IKE] <12106> 10.32.1.10 is initiating an IKE_SA | |
| 09:24:53 10[IKE] <transport-mode-out|12106> IKE_SA transport-mode-out[12106] established between 10.32.3.10[10.32.3.10]...10.32.1.10[10.32.1.10] | |
| 09:24:53 10[IKE] <transport-mode-out|12106> CHILD_SA transport-mode-in{12223} established with SPIs c50d0172_i ca170918_o and TS 10.32.3.10/32[0/10000] 10.32.3.10/32[0/10001] 10.32.3.10/32[0/10002] 10.32.3.10/32[0/10003] 10.32.3.10/32[0/10004] 10.32.3.10/32[0/10005] 10.32.3.10/32[0/10006] 10.32.3.10/32[0/10007] === 10.32.1.10/32 | |
| 09:25:02 11[IKE] <transport-mode-out|12103> deleting IKE_SA transport-mode-out[12103] between 10.32.3.10[10.32.3.10]...10.32.2.10[10.32.2.10] | |
| 09:25:02 15[IKE] <transport-mode-out|12103> IKE_SA deleted | |
| 09:25:02 06[IKE] <transport-mode-out|12107> initiating IKE_SA transport-mode-out[12107] to 10.32.2.10 | |
| 09:25:02 07[IKE] <transport-mode-out|12107> establishing CHILD_SA transport-mode-out{12224} reqid 1 | |
| 09:25:02 10[IKE] <transport-mode-out|12107> IKE_SA transport-mode-out[12107] established between 10.32.3.10[10.32.3.10]...10.32.2.10[10.32.2.10] | |
| 09:25:02 10[IKE] <transport-mode-out|12107> CHILD_SA transport-mode-out{12224} established with SPIs c779672f_i cf7a7a7c_o and TS 10.32.3.10/32 === 10.32.2.10/32[0/10000] 10.32.2.10/32[0/10001] 10.32.2.10/32[0/10002] 10.32.2.10/32[0/10003] 10.32.2.10/32[0/10004] 10.32.2.10/32[0/10005] 10.32.2.10/32[0/10006] 10.32.2.10/32[0/10007] | |
| 09:25:03 08[IKE] <transport-mode-out|12104> deleting IKE_SA transport-mode-out[12104] between 10.32.3.10[10.32.3.10]...10.32.1.10[10.32.1.10] | |
| 09:25:03 14[IKE] <transport-mode-out|12104> IKE_SA deleted | |
| 09:25:04 05[IKE] <transport-mode-out|12108> initiating IKE_SA transport-mode-out[12108] to 10.32.1.10 | |
| 09:25:04 11[IKE] <transport-mode-out|12108> establishing CHILD_SA transport-mode-out{12225} reqid 1 | |
| 09:25:04 15[IKE] <transport-mode-out|12108> IKE_SA transport-mode-out[12108] established between 10.32.3.10[10.32.3.10]...10.32.1.10[10.32.1.10] | |
| 09:25:04 15[IKE] <transport-mode-out|12108> CHILD_SA transport-mode-out{12225} established with SPIs c728b97d_i c2540351_o and TS 10.32.3.10/32 === 10.32.1.10/32[0/10000] 10.32.1.10/32[0/10001] 10.32.1.10/32[0/10002] 10.32.1.10/32[0/10003] 10.32.1.10/32[0/10004] 10.32.1.10/32[0/10005] 10.32.1.10/32[0/10006] 10.32.1.10/32[0/10007] | |
| 09:25:12 11[IKE] <transport-mode-out|12105> deleting IKE_SA transport-mode-out[12105] between 10.32.3.10[10.32.3.10]...10.32.2.10[10.32.2.10] | |
| 09:25:12 11[IKE] <transport-mode-out|12105> IKE_SA deleted | |
| # ip xfrm state | |
| src 10.32.1.10 dst 10.32.2.10 | |
| proto esp spi 0xc3f40b0e reqid 1 mode transport | |
| replay-window 0 | |
| aead rfc4106(gcm(aes)) 0x8a7ec3b91f2ceaa0a1e52eed35d36f21ebeb9151 128 | |
| anti-replay context: seq 0x0, oseq 0x12, bitmap 0x00000000 | |
| sel src 10.32.1.10/32 dst 10.32.2.10/32 | |
| src 10.32.2.10 dst 10.32.1.10 | |
| proto esp spi 0xcf033ff5 reqid 1 mode transport | |
| replay-window 32 | |
| aead rfc4106(gcm(aes)) 0x46f6a44890a583fd1ae06cd61043af576749ede1 128 | |
| anti-replay context: seq 0x8, oseq 0x0, bitmap 0x000000ff | |
| sel src 10.32.2.10/32 dst 10.32.1.10/32 | |
| src 10.32.1.10 dst 10.32.3.10 | |
| proto esp spi 0xce6daf19 reqid 1 mode transport | |
| replay-window 0 | |
| aead rfc4106(gcm(aes)) 0x90204730b1eb7b729ac9ebf5a274f3801ea4fad6 128 | |
| anti-replay context: seq 0x0, oseq 0x60, bitmap 0x00000000 | |
| sel src 10.32.1.10/32 dst 10.32.3.10/32 | |
| src 10.32.3.10 dst 10.32.1.10 | |
| proto esp spi 0xc7ab359c reqid 1 mode transport | |
| replay-window 32 | |
| aead rfc4106(gcm(aes)) 0x39847ff83f9ee7bcfaa04495c9e75636a45388ec 128 | |
| anti-replay context: seq 0x31, oseq 0x0, bitmap 0xffffffff | |
| sel src 10.32.3.10/32 dst 10.32.1.10/32 | |
| src 10.32.1.10 dst 10.32.2.10 | |
| proto esp spi 0xca6c46d2 reqid 6088 mode transport | |
| replay-window 0 | |
| aead rfc4106(gcm(aes)) 0x16b377edd276910cb3b320a1e9824504b5869a87 128 | |
| anti-replay context: seq 0x0, oseq 0x41, bitmap 0x00000000 | |
| sel src 10.32.1.10/32 dst 10.32.2.10/32 | |
| src 10.32.2.10 dst 10.32.1.10 | |
| proto esp spi 0xcef2734f reqid 6088 mode transport | |
| replay-window 32 | |
| aead rfc4106(gcm(aes)) 0xab386d5f0804958ec9e20bb6fa30863e33990263 128 | |
| anti-replay context: seq 0x97, oseq 0x0, bitmap 0xffffffff | |
| sel src 10.32.2.10/32 dst 10.32.1.10/32 | |
| src 10.32.1.10 dst 10.32.3.10 | |
| proto esp spi 0xc962cd15 reqid 6087 mode transport | |
| replay-window 0 | |
| aead rfc4106(gcm(aes)) 0x53f624423260983cb40bf0d884de57726dc50f2e 128 | |
| anti-replay context: seq 0x0, oseq 0x63, bitmap 0x00000000 | |
| sel src 10.32.1.10/32 dst 10.32.3.10/32 | |
| src 10.32.3.10 dst 10.32.1.10 | |
| proto esp spi 0xc896d922 reqid 6087 mode transport | |
| replay-window 32 | |
| aead rfc4106(gcm(aes)) 0x4a5b99aec4032edcc22b7a849878b890ab81b0b2 128 | |
| anti-replay context: seq 0xc4, oseq 0x0, bitmap 0xffffffff | |
| sel src 10.32.3.10/32 dst 10.32.1.10/32 | |
| src 10.32.1.10 dst 10.32.1.183 | |
| proto esp spi 0xca25917c reqid 5988 mode transport | |
| replay-window 0 | |
| aead rfc4106(gcm(aes)) 0x68026cb2aa914e39f1cbd45456b658974906c733 128 | |
| anti-replay context: seq 0x0, oseq 0x0, bitmap 0x00000000 | |
| sel src 10.32.1.10/32 dst 10.32.1.183/32 | |
| src 10.32.1.183 dst 10.32.1.10 | |
| proto esp spi 0xc335baec reqid 5988 mode transport | |
| replay-window 32 | |
| aead rfc4106(gcm(aes)) 0xd73b17456f6cb39a8407f0b6950d6bf2ecfe1b0c 128 | |
| anti-replay context: seq 0x0, oseq 0x0, bitmap 0x00000000 | |
| sel src 10.32.1.183/32 dst 10.32.1.10/32 | |
| src 10.32.1.10 dst 10.32.101.87 | |
| proto esp spi 0xc6d7136a reqid 6050 mode transport | |
| replay-window 0 | |
| aead rfc4106(gcm(aes)) 0x48e36e3a7f3f607306ae60571bcfe96ecf21f1d9 128 | |
| anti-replay context: seq 0x0, oseq 0x0, bitmap 0x00000000 | |
| sel src 10.32.1.10/32 dst 10.32.101.87/32 | |
| src 10.32.101.87 dst 10.32.1.10 | |
| proto esp spi 0xc7cb979a reqid 6050 mode transport | |
| replay-window 32 | |
| aead rfc4106(gcm(aes)) 0xabee9ea74d0fc63e5ef375447fee313db512dd8a 128 | |
| anti-replay context: seq 0x0, oseq 0x0, bitmap 0x00000000 | |
| sel src 10.32.101.87/32 dst 10.32.1.10/32 | |
| # ip xfrm policy | |
| src 10.32.1.10/32 dst 10.32.2.10/32 sport 10007 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc16d8191 reqid 6182 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 dport 10007 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6182 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 sport 10006 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc16d8191 reqid 6182 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 dport 10006 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6182 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 sport 10005 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc16d8191 reqid 6182 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 dport 10005 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6182 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 sport 10004 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc16d8191 reqid 6182 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 dport 10004 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6182 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 sport 10003 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc16d8191 reqid 6182 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 dport 10003 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6182 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 sport 10002 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc16d8191 reqid 6182 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 dport 10002 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6182 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 sport 10001 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc16d8191 reqid 6182 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 dport 10001 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6182 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 sport 10000 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc16d8191 reqid 6182 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 dport 10000 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6182 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 sport 10007 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcdcea4c9 reqid 6181 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 dport 10007 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6181 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 sport 10006 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcdcea4c9 reqid 6181 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 dport 10006 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6181 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 sport 10005 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcdcea4c9 reqid 6181 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 dport 10005 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6181 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 sport 10004 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcdcea4c9 reqid 6181 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 dport 10004 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6181 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 sport 10003 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcdcea4c9 reqid 6181 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 dport 10003 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6181 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 sport 10002 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcdcea4c9 reqid 6181 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 dport 10002 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6181 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 sport 10001 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcdcea4c9 reqid 6181 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 dport 10001 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6181 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 sport 10000 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcdcea4c9 reqid 6181 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 dport 10000 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6181 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 dport 10007 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc468a709 reqid 1 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 sport 10007 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 dport 10006 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc468a709 reqid 1 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 sport 10006 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 dport 10005 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc468a709 reqid 1 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 sport 10005 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 dport 10004 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc468a709 reqid 1 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 sport 10004 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 dport 10003 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc468a709 reqid 1 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 sport 10003 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 dport 10002 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc468a709 reqid 1 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 sport 10002 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 dport 10001 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc468a709 reqid 1 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 sport 10001 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.2.10/32 dport 10000 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc468a709 reqid 1 mode transport | |
| src 10.32.2.10/32 dst 10.32.1.10/32 sport 10000 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 dport 10007 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc3dbd287 reqid 1 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 sport 10007 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 dport 10006 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc3dbd287 reqid 1 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 sport 10006 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 dport 10005 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc3dbd287 reqid 1 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 sport 10005 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 dport 10004 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc3dbd287 reqid 1 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 sport 10004 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 dport 10003 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc3dbd287 reqid 1 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 sport 10003 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 dport 10002 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc3dbd287 reqid 1 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 sport 10002 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 dport 10001 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc3dbd287 reqid 1 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 sport 10001 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.3.10/32 dport 10000 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc3dbd287 reqid 1 mode transport | |
| src 10.32.3.10/32 dst 10.32.1.10/32 sport 10000 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.1.10/32 dst 10.32.1.183/32 sport 10007 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcc3ab464 reqid 5988 mode transport | |
| src 10.32.1.10/32 dst 10.32.1.183/32 sport 10006 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcc3ab464 reqid 5988 mode transport | |
| src 10.32.1.10/32 dst 10.32.1.183/32 sport 10005 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcc3ab464 reqid 5988 mode transport | |
| src 10.32.1.10/32 dst 10.32.1.183/32 sport 10004 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcc3ab464 reqid 5988 mode transport | |
| src 10.32.1.10/32 dst 10.32.1.183/32 sport 10003 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcc3ab464 reqid 5988 mode transport | |
| src 10.32.1.10/32 dst 10.32.1.183/32 sport 10002 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcc3ab464 reqid 5988 mode transport | |
| src 10.32.1.10/32 dst 10.32.1.183/32 sport 10001 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcc3ab464 reqid 5988 mode transport | |
| src 10.32.1.10/32 dst 10.32.1.183/32 sport 10000 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xcc3ab464 reqid 5988 mode transport | |
| src 10.32.1.183/32 dst 10.32.1.10/32 dport 10007 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 5988 mode transport | |
| src 10.32.1.183/32 dst 10.32.1.10/32 dport 10006 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 5988 mode transport | |
| src 10.32.1.183/32 dst 10.32.1.10/32 dport 10005 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 5988 mode transport | |
| src 10.32.1.183/32 dst 10.32.1.10/32 dport 10004 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 5988 mode transport | |
| src 10.32.1.183/32 dst 10.32.1.10/32 dport 10003 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 5988 mode transport | |
| src 10.32.1.183/32 dst 10.32.1.10/32 dport 10002 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 5988 mode transport | |
| src 10.32.1.183/32 dst 10.32.1.10/32 dport 10001 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 5988 mode transport | |
| src 10.32.1.183/32 dst 10.32.1.10/32 dport 10000 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 5988 mode transport | |
| src 10.32.1.10/32 dst 10.32.101.87/32 sport 10007 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc47f68da reqid 6050 mode transport | |
| src 10.32.1.10/32 dst 10.32.101.87/32 sport 10006 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc47f68da reqid 6050 mode transport | |
| src 10.32.1.10/32 dst 10.32.101.87/32 sport 10005 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc47f68da reqid 6050 mode transport | |
| src 10.32.1.10/32 dst 10.32.101.87/32 sport 10004 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc47f68da reqid 6050 mode transport | |
| src 10.32.1.10/32 dst 10.32.101.87/32 sport 10003 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc47f68da reqid 6050 mode transport | |
| src 10.32.1.10/32 dst 10.32.101.87/32 sport 10002 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc47f68da reqid 6050 mode transport | |
| src 10.32.1.10/32 dst 10.32.101.87/32 sport 10001 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc47f68da reqid 6050 mode transport | |
| src 10.32.1.10/32 dst 10.32.101.87/32 sport 10000 | |
| dir out priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp spi 0xc47f68da reqid 6050 mode transport | |
| src 10.32.101.87/32 dst 10.32.1.10/32 dport 10007 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6050 mode transport | |
| src 10.32.101.87/32 dst 10.32.1.10/32 dport 10006 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6050 mode transport | |
| src 10.32.101.87/32 dst 10.32.1.10/32 dport 10005 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6050 mode transport | |
| src 10.32.101.87/32 dst 10.32.1.10/32 dport 10004 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6050 mode transport | |
| src 10.32.101.87/32 dst 10.32.1.10/32 dport 10003 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6050 mode transport | |
| src 10.32.101.87/32 dst 10.32.1.10/32 dport 10002 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6050 mode transport | |
| src 10.32.101.87/32 dst 10.32.1.10/32 dport 10001 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6050 mode transport | |
| src 10.32.101.87/32 dst 10.32.1.10/32 dport 10000 | |
| dir in priority 367167 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 6050 mode transport | |
| src 0.0.0.0/0 dst 10.32.0.0/16 dport 10007 | |
| dir out priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.0.0/16 dst 0.0.0.0/0 sport 10007 | |
| dir in priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 0.0.0.0/0 dst 10.32.0.0/16 dport 10006 | |
| dir out priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.0.0/16 dst 0.0.0.0/0 sport 10006 | |
| dir in priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 0.0.0.0/0 dst 10.32.0.0/16 dport 10005 | |
| dir out priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.0.0/16 dst 0.0.0.0/0 sport 10005 | |
| dir in priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 0.0.0.0/0 dst 10.32.0.0/16 dport 10004 | |
| dir out priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.0.0/16 dst 0.0.0.0/0 sport 10004 | |
| dir in priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 0.0.0.0/0 dst 10.32.0.0/16 dport 10003 | |
| dir out priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.0.0/16 dst 0.0.0.0/0 sport 10003 | |
| dir in priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 0.0.0.0/0 dst 10.32.0.0/16 dport 10002 | |
| dir out priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.0.0/16 dst 0.0.0.0/0 sport 10002 | |
| dir in priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 0.0.0.0/0 dst 10.32.0.0/16 dport 10001 | |
| dir out priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.0.0/16 dst 0.0.0.0/0 sport 10001 | |
| dir in priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 0.0.0.0/0 dst 10.32.0.0/16 dport 10000 | |
| dir out priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
| src 10.32.0.0/16 dst 0.0.0.0/0 sport 10000 | |
| dir in priority 391744 ptype main | |
| tmpl src 0.0.0.0 dst 0.0.0.0 | |
| proto esp reqid 1 mode transport | |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment