vpnId, IpsecStaticPeerConfig.builder() .setTunnelInterface(vpnInterfaceName) .setIkePhase1Policy(vpnId) .setIpsecPolicy(vpnId) .setSourceInterface(externalInterfaceName) .setLocalAddress(ipsecTunnel.getVgwOutsideAddress()) .setDestinationAddress(ipsecTunnel.getCgwOutsideAddress()) .build());
.setDestinationAddress(cryptoMapEntry.getPeer()) .setIkePhase1Policy(ikePhase1Policy); } else {
.setSourceInterface("interface1") .setTunnelInterface("Tunnel1") .build(); IpsecStaticPeerConfig ipsecPeerConfig2 = IpsecStaticPeerConfig.builder() .setSourceInterface("interface2") .setTunnelInterface("Tunnel2") .build(); IpsecStaticPeerConfig ipsecPeerConfig3 = IpsecStaticPeerConfig.builder() .setSourceInterface("interface3") .setTunnelInterface("Tunnel3") .build(); IpsecStaticPeerConfig ipsecPeerConfig4 = IpsecStaticPeerConfig.builder() .setSourceInterface("interface4") .setTunnelInterface("Tunnel4") .build(); IpsecStaticPeerConfig ipsecPeerConfig5 = IpsecStaticPeerConfig.builder().setSourceInterface("interface5").build(); IpsecStaticPeerConfig ipsecPeerConfig6 = IpsecStaticPeerConfig.builder().setSourceInterface("interface6").build(); IpsecStaticPeerConfig ipsecPeerConfig7 = IpsecStaticPeerConfig.builder() .setSourceInterface("interface7") .setTunnelInterface("Tunnel7") .build();
ipsecPeerConfigBuilder.setDestinationAddress(peerAddress); Ip localAddress = ipsecPeer.getLocalAddress(); org.batfish.datamodel.Interface externalInterface = _ipToInterfaceMap.get(localAddress); + localAddress); } else { ipsecPeerConfigBuilder.setSourceInterface(externalInterface.getName()); ipsecPeerConfigBuilder.setLocalAddress(localAddress); _c.getDefaultVrf().getInterfaces().get(bindInterfaceName); if (newBindInterface != null) { ipsecPeerConfigBuilder.setTunnelInterface(newBindInterface.getName()); } else { _w.redFlag("Reference to undefined bind-interface: \"" + bindInterfaceName + "\""); ikePhase1Policy.getIkePhase1Proposals().add(newIkeProposalName); ipsecPeerConfigBuilder.setIkePhase1Policy(ikePhase1Policy.getName()); ipsecPhase2Policy.getProposals().add(newIpsecProposalName); ipsecPeerConfigBuilder.setIpsecPolicy(espGroupName); ipsecPeerConfigMapBuilder.put(newIpsecVpnName, ipsecPeerConfigBuilder.build());
ImmutableSortedMap.of(ipsecPhase2ProposalName, new IpsecPhase2Proposal())); config.setIpsecPeerConfigs( ImmutableSortedMap.of(ipsecPeerConfigName, IpsecStaticPeerConfig.builder().build())); config.setRouteFilterLists( ImmutableSortedMap.of(routeFilterListName, new RouteFilterList(routeFilterListName)));
.setSourceInterface("int11") .setTunnelInterface("tunnel11") .build(); IpsecStaticPeerConfig peer2 = IpsecStaticPeerConfig.builder() .setSourceInterface("int12") .setTunnelInterface("tunnel12") .build(); IpsecStaticPeerConfig peer3 = IpsecStaticPeerConfig.builder() .setSourceInterface("int21") .setTunnelInterface("tunnel21") .build(); IpsecStaticPeerConfig peer4 = IpsecStaticPeerConfig.builder() .setSourceInterface("int22") .setTunnelInterface("tunnel22") .build();
Configuration responderNode; _ipsecStaticPeerConfigBuilder .setSourceInterface("Test_interface") .setLocalAddress(Ip.parse("1.2.3.4")) .setTunnelInterface("Tunnel_interface"); _graph = ValueGraphBuilder.directed().allowsSelfLoops(false).build(); _ipsecSessionBuilder = IpsecSession.builder(); initiatorNode.setIpsecPeerConfigs( initiatorIpsecPeerConfigMapBuilder .put(INITIATOR_IPSEC_PEER_CONFIG, _ipsecStaticPeerConfigBuilder.build()) .build()); responderNode.setIpsecPeerConfigs( responderIpsecPeerConfigMapBuilder .put(RESPONDER_IPSEC_PEER_CONFIG, _ipsecStaticPeerConfigBuilder.build()) .build());
@Nullable private IpsecPeerConfig toIpsecPeerConfig(IpsecVpn ipsecVpn) { IpsecStaticPeerConfig.Builder ipsecStaticConfigBuilder = IpsecStaticPeerConfig.builder(); ipsecStaticConfigBuilder.setTunnelInterface(ipsecVpn.getBindInterface().getName()); IkeGateway ikeGateway = _masterLogicalSystem.getIkeGateways().get(ipsecVpn.getGateway()); return null; ipsecStaticConfigBuilder.setDestinationAddress(ikeGateway.getAddress()); ipsecStaticConfigBuilder.setSourceInterface(ikeGateway.getExternalInterface().getName()); ipsecStaticConfigBuilder.setLocalAddress(ikeGateway.getLocalAddress()); } else if (ikeGateway.getExternalInterface() != null && ikeGateway.getExternalInterface().getPrimaryAddress() != null) { ipsecStaticConfigBuilder.setLocalAddress( ikeGateway.getExternalInterface().getPrimaryAddress().getIp()); } else { ipsecStaticConfigBuilder.setIpsecPolicy(ipsecVpn.getIpsecPolicy()); ipsecStaticConfigBuilder.setIkePhase1Policy(ikeGateway.getIkePolicy()); return ipsecStaticConfigBuilder.build();
/** Converts a {@link Tunnel} to an {@link IpsecPeerConfig} */ static IpsecPeerConfig toIpsecPeerConfig( Tunnel tunnel, String tunnelIfaceName, CiscoConfiguration oldConfig, Configuration newConfig) { IpsecStaticPeerConfig.Builder ipsecStaticPeerConfigBuilder = IpsecStaticPeerConfig.builder() .setTunnelInterface(tunnelIfaceName) .setDestinationAddress(tunnel.getDestination()) .setLocalAddress(tunnel.getSourceAddress()) .setSourceInterface(tunnel.getSourceInterfaceName()) .setIpsecPolicy(tunnel.getIpsecProfileName()); IpsecProfile ipsecProfile = null; if (tunnel.getIpsecProfileName() != null) { ipsecProfile = oldConfig.getIpsecProfiles().get(tunnel.getIpsecProfileName()); } if (ipsecProfile != null && ipsecProfile.getIsakmpProfile() != null) { ipsecStaticPeerConfigBuilder.setIkePhase1Policy(ipsecProfile.getIsakmpProfile()); } else { ipsecStaticPeerConfigBuilder.setIkePhase1Policy( getIkePhase1Policy( newConfig.getIkePhase1Policies(), tunnel.getDestination(), tunnel.getSourceInterfaceName())); } return ipsecStaticPeerConfigBuilder.build(); }
public static Builder builder() { return new Builder(); }