summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorNiels Provos <provos@cvs.openbsd.org>1997-09-05 10:07:33 +0000
committerNiels Provos <provos@cvs.openbsd.org>1997-09-05 10:07:33 +0000
commit80dbc86ac2bfbe64861e3b5e82b5b7ce55702d7a (patch)
tree8ea47cf86ae0f4b310fdb203d1effdaadd3cddbb
parentff597e7f0dd703e8801ca7ef68de19f2d02600be (diff)
missing documentation.
-rw-r--r--sbin/ipsec/rt/Makefile3
-rw-r--r--sbin/ipsec/rt/rt.1107
-rw-r--r--sbin/ipsec/rtdelete/Makefile3
-rw-r--r--sbin/ipsec/rtdelete/rtdelete.183
4 files changed, 192 insertions, 4 deletions
diff --git a/sbin/ipsec/rt/Makefile b/sbin/ipsec/rt/Makefile
index 9a67d87a25e..746123c1975 100644
--- a/sbin/ipsec/rt/Makefile
+++ b/sbin/ipsec/rt/Makefile
@@ -1,6 +1,5 @@
-# $OpenBSD: Makefile,v 1.2 1997/07/20 10:32:42 provos Exp $
+# $OpenBSD: Makefile,v 1.3 1997/09/05 10:07:25 provos Exp $
PROG= rt
-NOMAN=
.include <bsd.prog.mk>
diff --git a/sbin/ipsec/rt/rt.1 b/sbin/ipsec/rt/rt.1
new file mode 100644
index 00000000000..7cba0b3ac9c
--- /dev/null
+++ b/sbin/ipsec/rt/rt.1
@@ -0,0 +1,107 @@
+.\" $OpenBSD: rt.1,v 1.1 1997/09/05 10:07:25 provos Exp $
+.\" Copyright 1997 Niels Provos <provos@physnet.uni-hamburg.de>
+.\" All rights reserved.
+.\"
+.\" Redistribution and use in source and binary forms, with or without
+.\" modification, are permitted provided that the following conditions
+.\" are met:
+.\" 1. Redistributions of source code must retain the above copyright
+.\" notice, this list of conditions and the following disclaimer.
+.\" 2. Redistributions in binary form must reproduce the above copyright
+.\" notice, this list of conditions and the following disclaimer in the
+.\" documentation and/or other materials provided with the distribution.
+.\" 3. All advertising materials mentioning features or use of this software
+.\" must display the following acknowledgement:
+.\" This product includes software developed by Niels Provos.
+.\" 4. The name of the author may not be used to endorse or promote products
+.\" derived from this software without specific prior written permission.
+.\"
+.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
+.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
+.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
+.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+.\"
+.\" Manual page, using -mandoc macros
+.\"
+.Dd September 5, 1997
+.Dt RT 1
+.Os
+.Sh NAME
+.Nm rt
+.Nd create IPSec routing entries
+.Sh SYNOPSIS
+.Nm rt
+.Ar isrc
+.Ar isrcmask
+.Ar idst
+.Ar idstmask
+.Ar tproto
+.Ar sport
+.Ar dport
+.Ar raddr
+.Ar spi
+.Ar fespah
+.Sh DESCRIPTION
+The
+.Nm rt
+utility creates a routing entry for IPSec. A Security association
+must already be established with either
+.Xr photurisd 1
+or
+.Xr ipsecadm 1 .
+The arguments are:
+.Pp
+.Bl -tag -width idstmask_
+.It isrc
+The initial source address.
+.It isrcmask
+The network mask for the initial source address. The source
+address of outgoing packets has to match the address range
+specified by
+.Nm isrc
+and
+.Nm isrcmask
+to be routed through IPSec.
+.It idst
+The initial destination address.
+.It idstmask
+The network mask for the initial destination address. The destination
+address of outgoing packets has to match the address range
+specified by
+.Nm idst
+and
+.Nm idstmask
+to be routed through IPSec.
+.It tproto
+The protocol number packets have to match to be routed.
+Specify -1 as wildcard.
+.It sport
+The source port of a packet if applicable. Specify -1 as wildcard.
+.It dport
+The destination port aof a packet if applicable. Specify -1 as wildcard.
+.It raddr
+The destination address of the security association. If you dont
+use tunnel mode that will be the same as
+.Nm idst .
+.It spi
+The Security Parameter Index of the security association.
+.It fespah
+Specifies the security protocol of the SA. Use either 0 for AH or
+1 for ESP.
+.El
+.Sh EXAMPLE
+Route packets for ESP in transport mode:
+.Pp
+rt 0.0.0.0 255.255.255.255 remote 255.255.255.255 -1 -1 -1 remote SPI 1
+.Pp
+rt localip 255.255.255.255 remote 255.255.255.255 -1 -1 -1 remote SPI 1
+.Sh SEE ALSO
+.Xr ipsecadm 1 ,
+.Xr netstat 1 ,
+.Xr photurisd 1 .
diff --git a/sbin/ipsec/rtdelete/Makefile b/sbin/ipsec/rtdelete/Makefile
index 2afcace07d2..d8e1af3df02 100644
--- a/sbin/ipsec/rtdelete/Makefile
+++ b/sbin/ipsec/rtdelete/Makefile
@@ -1,6 +1,5 @@
-# $OpenBSD: Makefile,v 1.2 1997/07/20 10:32:43 provos Exp $
+# $OpenBSD: Makefile,v 1.3 1997/09/05 10:07:31 provos Exp $
PROG= rtdelete
-NOMAN=
.include <bsd.prog.mk>
diff --git a/sbin/ipsec/rtdelete/rtdelete.1 b/sbin/ipsec/rtdelete/rtdelete.1
new file mode 100644
index 00000000000..54c2b2caa0a
--- /dev/null
+++ b/sbin/ipsec/rtdelete/rtdelete.1
@@ -0,0 +1,83 @@
+.\" $OpenBSD: rtdelete.1,v 1.1 1997/09/05 10:07:32 provos Exp $
+.\" Copyright 1997 Niels Provos <provos@physnet.uni-hamburg.de>
+.\" All rights reserved.
+.\"
+.\" Redistribution and use in source and binary forms, with or without
+.\" modification, are permitted provided that the following conditions
+.\" are met:
+.\" 1. Redistributions of source code must retain the above copyright
+.\" notice, this list of conditions and the following disclaimer.
+.\" 2. Redistributions in binary form must reproduce the above copyright
+.\" notice, this list of conditions and the following disclaimer in the
+.\" documentation and/or other materials provided with the distribution.
+.\" 3. All advertising materials mentioning features or use of this software
+.\" must display the following acknowledgement:
+.\" This product includes software developed by Niels Provos.
+.\" 4. The name of the author may not be used to endorse or promote products
+.\" derived from this software without specific prior written permission.
+.\"
+.\" THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
+.\" IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
+.\" OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
+.\" IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT,
+.\" INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
+.\" DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
+.\" THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
+.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
+.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
+.\"
+.\" Manual page, using -mandoc macros
+.\"
+.Dd September 5, 1997
+.Dt RTDELETE 1
+.Os
+.Sh NAME
+.Nm rtdelete
+.Nd delete IPSec routing entries
+.Sh SYNOPSIS
+.Nm rt
+.Ar isrc
+.Ar isrcmask
+.Ar idst
+.Ar idstmask
+.Ar proto
+.Ar sport
+.Ar dport
+.Sh DESCRIPTION
+The
+.Nm rtdelete
+utility deletes a routing entry for IPSec created by
+.Xr rt 1 .
+The arguments are:
+.Pp
+.Bl -tag -width idstmask_
+.It isrc
+The initial source address as given to
+.Xr rt 1 .
+.It isrcmask
+The network mask for the initial source address.
+.It idst
+The initial destination address.
+.It idstmask
+The network mask for the initial destination address.
+.It proto
+The protocol number given to
+.Xr rt 1 .
+.It sport
+The source port of a packet if applicable. Specify -1 as wildcard.
+.It dport
+The destination port aof a packet if applicable. Specify -1 as wildcard.
+.El
+.Sh EXAMPLE
+Delete routing entry for ESP in transport mode:
+.Pp
+rt 0.0.0.0 255.255.255.255 remote 255.255.255.255 -1 -1 -1
+.Pp
+rt localip 255.255.255.255 remote 255.255.255.255 -1 -1 -1
+.Sh SEE ALSO
+.Xr ipsecadm 1 ,
+.Xr netstat 1 ,
+.Xr photurisd 1 ,
+.Xr rt 1 ,
+.Xr route 8 .