mipagent.conf.fa-sample revision 7c478bd95313f5f23a4c958a745db2134aa03244
#
#pragma ident "%Z%%M% %I% %E% SMI"
#
# Copyright 2005 Sun Microsystems, Inc. All rights reserved.
# Use is subject to license terms.
#
# CDDL HEADER START
#
# The contents of this file are subject to the terms of the
# Common Development and Distribution License, Version 1.0 only
# (the "License"). You may not use this file except in compliance
# with the License.
#
# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
# See the License for the specific language governing permissions
# and limitations under the License.
#
# When distributing Covered Code, include this CDDL HEADER in each
# file and include the License file at usr/src/OPENSOLARIS.LICENSE.
# If applicable, add the following below this CDDL HEADER, with the
# fields enclosed by brackets "[]" replaced with your own identifying
# information: Portions Copyright [yyyy] [name of copyright owner]
#
# CDDL HEADER END
#
# Sample configuration file for mobility agents. Lines starting with the hash
# character are treated as comments. Blank lines are ignored. All the time
# values are in seconds unless stated otherwise. For the variable names that
# are composed of multiple words, the practice is each word should start with
# upper-case letter, and each value should start with lower-case.
[General]
Version = 1.0 # version number for the configuration file. (required)
#
# One section for all interfaces supported by mipagent.
# The section name must be [Advertisements <intf-name>]
#
# HomeAgent yes, no (Determines whether mipagent will provide
# Home Agent functionality)
# ForeignAgent yes, no (Determines whether mipagent will provide
# Foreign Agent functionality)
# PrefixFlags yes, no (Specifies whether advertisements will include
# the prefix extension).
# AdvertiseOnBcast yes, no (If yes, advertisements are sent on
# 255.255.255.255, rather than 224.0.0.1)
# RegLifetime n (maximum lifetime value accepted in registration
# requests).
# AdvLifetime n (Lifetime advertised in the RFC1256 portion)
# AdvFrequency n (The frequency of mobility advertisements, in
# seconds)
# ReverseTunnel yes, no (Determines whether mipagent has reverse tunnel
# decapsulation/encapsulation capability. In
# case of foreign-agent it also means that the
# foreign agent is advertising reverse tunnel)
#
# ReverseTunnelRequired yes, no (Determines local policy of the mipagent
# on registration request, i.e whether a mobile
# should/must request reverse tunnel)
[Advertisements hme0]
HomeAgent = no
ForeignAgent = yes
PrefixFlags = yes
AdvertiseOnBcast = yes
RegLifetime = 200
AdvLifetime = 200
AdvFrequency = 5
ReverseTunnel = yes
ReverseTunnelRequired = no
# Advertisement section for dynamic interfaces:
# The interface with '*' suffix determines dynamic interfaces to mipagent.
# Additional parameters which may control Advertisement frequency in a newly
# created mobility interface are useful when a mobility
# interface does not want to have a periodic advertisement all the time.
# The following configuration is useful for foreign agents.
# AdvInitCount n Initial Advertisement count when
# Unsolicited advertisements are limited.
# AdvLimitUnsolicited yes, no Determines the local policy of the mipagent
# (foreign agent) if it sends limited or
# unlimited unsolicited advertisement.
# Uncomment the following section, if your foreign agent allows mobility
# service through newly created Solaris PPP interfaces. For more information
# on dynamic interface support, please check mipagent.conf(1M).
#[Advertisements sppp*]
# HomeAgent = no
# ForeignAgent = yes
# AdvertiseOnBcast = no
# PrefixFlags = yes
# RegLifetime = 300
# AdvLifetime = 300
# AdvFrequency = 2
# ReverseTunnel = yes
# ReverseTunnelRequired = no
# AdvInitCount = 5
# AdvLimitUnsolicited = yes
#
# The GlobalSecurityParameters contains all security related configuration
# parameters.
#
# MaxClockSkew n (The number of seconds that mipagent will
# accept as a difference between its own local
# time and the time found in Registration Requets)
# HA-FAAuth yes, no (Specifies whether HA-FA Authentication
# extensions must be present in Registration
# Requests and Replies)
# MN-FAAuth yes, no (Specifies whether MN-FA Authentication
# extensions must be present in Registration
# Requests and Replies)
# Challenge yes, no (Specifies whether the Foreign Agent will
# include Challenges in it's mobility
# advertisements)
# KeyDistribution files (must be set to files)
[GlobalSecurityParameters]
MaxClockSkew = 300
HA-FAauth = yes
MN-FAauth = yes
Challenge = no
KeyDistribution = files
#
# The SPIs must be configured. An SPI entry contains a numerical value
# the replay method and keying information.
#
# ReplyMethod none, timestamp (Specifies the type of replay
# authentication for the SPI)
# Key x (Authentication key in hexadecimal)
[SPI 257]
ReplayMethod = none
Key= 11111111111111111111111111111111
[SPI 258]
ReplayMethod = none
Key= 15111111111111111111111111111111
#
# The Address section contains configuration information for mobility
# nodes (foreign and home agents) as well as mobile nodes.
#
# The # Node-Default keyword in the section header is used to define a
# default SPI for all mobile nodes. This allows an administrator to
# simply include a single entry for all mobile nodes, assuming that
# they all use the same SPI. The Default-Node entry must include the
# pool entry.
#
# The Address section may also contain an NAI as opposed to
# the home address. These entries must also include the Pool
# entry.
#
# Type node, agent (Specifies whether the entry is for
# a mobile node, or a mobility agent)
# SPI n (The SPI value associated with the
# entry, which must be configured above)
# Pool n (If the section header contained an NAI,
# an address will be allocated for the
# mobile node from the pool defined)
[Address 10.1.1.1]
Type = node
SPI = 258
[Address 10.68.30.36]
Type = agent
SPI = 257