Created
March 23, 2011 10:30
-
-
Save zuriby/882915 to your computer and use it in GitHub Desktop.
AFIKOMAN_B
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0"?> | |
| <afikoman xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:noNamespaceSchemaLocation="file:///etc/afikoman-config.xsd"> | |
| <negotiator> | |
| <crypto> | |
| <ca> | |
| <cert>/opt/afikoman/crypto/N00.P000/CA.pem</cert> | |
| <crl>/opt/afikoman/crypto/N00.P000/crl.pem</crl> | |
| </ca> | |
| <box> | |
| <cert>/opt/afikoman/crypto/N00.P000/1002.pem</cert> | |
| <key>/opt/afikoman/crypto/N00.P000/1002.key</key> | |
| <dhparams>/opt/afikoman/crypto/N00.P000/dh.key</dhparams> | |
| <kek>/opt/afikoman/crypto/N00.P000/kek.key</kek> | |
| <bcmk>/opt/afikoman/crypto/N00.P000/bcmk.key</bcmk> | |
| <prevkek>/opt/afikoman/crypto/N00.P000/kek.key.old</prevkek> | |
| <prevbcmk>/opt/afikoman/crypto/N00.P000/bcmk.key.old</prevbcmk> | |
| </box> | |
| </crypto> | |
| </negotiator> | |
| <cipherbridge> | |
| <paths> | |
| <negotiator>/usr/bin/negotiator</negotiator> | |
| </paths> | |
| <configuration> | |
| <compress>False</compress> | |
| <fragment>True</fragment> | |
| </configuration> | |
| <ruleset id="rs1"> | |
| <cipher_rules> | |
| <cipher_rule id="1000" type="system"> | |
| <match type="ip"/> | |
| <operation_drop/> | |
| </cipher_rule> | |
| <cipher_rule id="1001" type="system"> | |
| <match type="ethernet"> | |
| <ethertype>0x806</ethertype> | |
| </match> | |
| <operation_bypass/> | |
| </cipher_rule> | |
| <cipher_rule id="1" type="user" enabled="1"> | |
| <match type="ip"> | |
| <source_ip>70.0.0.2</source_ip> | |
| <destination_ip>70.0.0.1</destination_ip> | |
| </match> | |
| <operation_bypass> | |
| </operation_bypass> | |
| </cipher_rule></cipher_rules> | |
| </ruleset> | |
| </cipherbridge> | |
| </afikoman> |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@AFIK-51:~# brctl show | |
| bridge name bridge id STP enabled interfaces |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1020 ? S 0:00 /usr/bin/python /usr/bin/cipherbridge -c /etc/afikoman-config.xml -i eth0 -o eth1 -D -p /var/run/cipherbridge.pid | |
| 1021 ? S 0:00 /usr/bin/python /usr/bin/negotiator -c /etc/afikoman-config.xml |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| eth0 Link encap:Ethernet HWaddr 00:03:1d:09:3f:6e | |
| UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 | |
| RX packets:4 errors:0 dropped:0 overruns:0 frame:0 | |
| TX packets:4 errors:0 dropped:0 overruns:0 carrier:0 | |
| collisions:0 txqueuelen:1000 | |
| RX bytes:240 (240.0 B) TX bytes:240 (240.0 B) | |
| Memory:fd6c0000-fd6e0000 | |
| eth1 Link encap:Ethernet HWaddr 00:03:1d:09:3f:6f | |
| UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 | |
| RX packets:4 errors:0 dropped:0 overruns:0 frame:0 | |
| TX packets:4 errors:0 dropped:0 overruns:0 carrier:0 | |
| collisions:0 txqueuelen:100 | |
| RX bytes:240 (240.0 B) TX bytes:240 (240.0 B) | |
| Memory:fddc0000-fdde0000 | |
| eth2 Link encap:Ethernet HWaddr 00:03:1d:09:3f:70 | |
| inet addr:20.0.0.30 Bcast:20.0.0.255 Mask:255.255.255.0 | |
| UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 | |
| RX packets:250 errors:0 dropped:0 overruns:0 frame:0 | |
| TX packets:153 errors:0 dropped:0 overruns:0 carrier:0 | |
| collisions:1 txqueuelen:100 | |
| RX bytes:24104 (24.1 KB) TX bytes:53209 (53.2 KB) | |
| Memory:fdbc0000-fdbe0000 | |
| eth2:0 Link encap:Ethernet HWaddr 00:03:1d:09:3f:70 | |
| inet addr:148.148.148.148 Bcast:148.148.148.255 Mask:255.255.255.0 | |
| UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 | |
| Memory:fdbc0000-fdbe0000 | |
| eth2:1 Link encap:Ethernet HWaddr 00:03:1d:09:3f:70 | |
| inet addr:80.0.0.12 Bcast:80.0.0.255 Mask:255.255.255.0 | |
| UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 | |
| Memory:fdbc0000-fdbe0000 | |
| lo Link encap:Local Loopback | |
| inet addr:127.0.0.1 Mask:255.0.0.0 | |
| UP LOOPBACK RUNNING MTU:16436 Metric:1 | |
| RX packets:0 errors:0 dropped:0 overruns:0 frame:0 | |
| TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 | |
| collisions:0 txqueuelen:0 | |
| RX bytes:0 (0.0 B) TX bytes:0 (0.0 B) |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@AFIK-51:~# cat /proc/sys/net/ipv4/ip_forward | |
| 0 |
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| root@AFIK-51:~# route -n | |
| Kernel IP routing table | |
| Destination Gateway Genmask Flags Metric Ref Use Iface | |
| 80.0.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 | |
| 148.148.148.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 | |
| 20.0.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2 | |
| 0.0.0.0 20.0.0.138 0.0.0.0 UG 100 0 0 eth2 |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment