From mboxrd@z Thu Jan 1 00:00:00 1970 From: Michael Tremer To: network@lists.ipfire.org Subject: Re: [PATCH v3 5/5] Add vpn security policies to cli Date: Mon, 17 Jul 2017 16:37:03 -0400 Message-ID: <1500323823.2548.17.camel@ipfire.org> In-Reply-To: <1500318318-18852-5-git-send-email-jonatan.schlag@ipfire.org> MIME-Version: 1.0 Content-Type: multipart/mixed; boundary="===============0163835248395730795==" List-Id: --===============0163835248395730795== Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit On Mon, 2017-07-17 at 21:05 +0200, Jonatan Schlag wrote: > Signed-off-by: Jonatan Schlag > --- >  src/network | 65 > +++++++++++++++++++++++++++++++++++++++++++++++++++++++++++-- >  1 file changed, 63 insertions(+), 2 deletions(-) > > diff --git a/src/network b/src/network > index 154d253..65143e6 100644 > --- a/src/network > +++ b/src/network > @@ -1194,7 +1194,6 @@ cli_reset() { >   fi >   >   warning_log "Will reset the whole network configuration!!!" > - >   # Force mode is disabled by default >   local force=0 >   This is still in here although it doesn't do anything good. > @@ -1384,13 +1383,75 @@ cli_raw() { >   exit ${EXIT_OK} >  } >   > +cli_vpn() { > + local action=${1} > + shift 1 > + > + case "${action}" in > + security-policies) > + cli_vpn_security_policies $@ > + ;; > + *) > + error "Unrecognized argument: ${action}" > + exit ${EXIT_ERROR} > + ;; > + esac > +} > + > +cli_vpn_security_policies() { > + > + local action > + local security_policy > + > + if vpn_security_policy_exists ${1}; then > + > + security_policy=${1} > + key=${2} > + shift 2 > + > + case "${key}" in > + cipher|compression|integrity|lifetime|pfs|sh > ow) > + vpn_security_policies_${key} > ${security_policy} $@ > + ;; > + group-type) > + vpn_security_policies_group_type > ${security_policy} $@ > + ;; > + key-exchange) > + vpn_security_policies_key_exchange > ${security_policy} $@ > + ;; > + *) > + error "Unrecognized argument: > ${key}" > + exit ${EXIT_ERROR} > + ;; > + esac > + else > + action=${1} > + shift > + > + case "${action}" in > + new) > + vpn_security_policies_new $@ > + ;; > + destroy) > + vpn_security_policies_destroy $@ > + ;; > + ""|*) > + if [ -n "${action}" ]; then > + error "Unrecognized > argument: '${action}'" > + fi > + exit ${EXIT_ERROR} > + ;; > + esac > + fi > +} > + >  # Process the given action >  case "${action}" in >   init) >   init_run >   ;; >   > - settings|hostname|port|device|zone|start|stop|restart|status > |reset|route) > + settings|hostname|port|device|zone|start|stop|restart|status > |reset|route|vpn) >   cli_${action} $@ >   ;; >   --===============0163835248395730795== Content-Type: application/pgp-signature Content-Transfer-Encoding: base64 Content-Disposition: attachment; filename="signature.asc" MIME-Version: 1.0 LS0tLS1CRUdJTiBQR1AgU0lHTkFUVVJFLS0tLS0KVmVyc2lvbjogR251UEcgdjIKCmlRSWNCQUFC Q2dBR0JRSlpiUi92QUFvSkVJQjU4UDl2a0FrSG5mWVFBSnVDM0RQd2ViSlQxR0xYb1NuN2VvTVMK VWhySzlUK3BNMGNPWDhMdWFoTERKY25YZFkrOGNCL0tLek44T1ZyWGpwZ21LSkJHNGtQZUVyWnlZ eFBlSUtnWQprTW1qdTdrYWI3d0hWRTV6cGkwQ2lYUGgxSi8yUE1PYlBDMFh0WEdBU1ExdWMrbmUy aXBtclFHT3VLcnEvM2tuCmVyMkJWOW8vL2JkNWZieU9UaHBPNUMzSzU5ZVlhME5EbnpCZlNWVmRl aDlHcFp4T1BZaU5wQjVTTUFXdmk3SmUKZ0t4bnB2VlZsZUtVQUZpT3FrV3B4QmtxUzlIMEt5VnBj NmFtellaL1B3dEVkSVc2QWRid0VVOVRORWRSTWRjRgpkMys3dmJTTmdudkRZZm1iZUF0b2o2Ujkz QXFVK1FRV3NEaW1mQnVtVG1jaVZKZGJFbk1rSlIvczZnWVM4K1R6CnZtSUpydDVLejdZME8wTjZ1 eXM3SDF4MHpXbjJ4a3QrOWlKMWtkU0M3emNSaXgzMWUrRUptSFZQWUEybS95cFcKYkZVak1Zd25z T1FaMWN5WTVqYi9Da0lPN1QzdUpDVVpHZUNtdlRxRHF2aGdNTDBNaVVOOHYyeW44ZHgwc2dNbQo3 VWZuWU9SZ0o5dzlZYm4yVithS2dUd0JHYkFvbnhQamFZZEhvVFhkTVYzelF6WEhXckNTeVdqQVlY b1dPUFdqCnAwUWoxUXhDNlFuTXR1cUM1ZHVNRzE3dHAxN1hFQ2xzaUVFVzBGWTJhQkxqaytpZzZ4 VTZmQzFDaTVyTHk5S2UKUHVxeDJ1N0d4ZUdVMkpxL0dNZW8zbk83bFhCNy8xcjNkZ2VlUnRGVVJH QUp3WVA5UFl2VHFOUmwzL2ZNa2lXcwpXVDNjWUh3VEZDSzZmbDQvU0szNgo9VWVBVQotLS0tLUVO RCBQR1AgU0lHTkFUVVJFLS0tLS0K --===============0163835248395730795==--