# Configuration for 192.168.6.1 
# Flush the SAD and SPD 
flush; 
spdflush; 
 
# Attention: Use this keys only for testing purposes! 
# Generate your own keys! 
 
# AH SAs using 128 bit long keys 
add 192.168.6.1 192.168.6.254 ah 0x200 -A hmac-md5 0xc0291ff014dccdd03874d9e8e4cdf3e6; 
add 192.168.6.254 192.168.6.1 ah 0x300 -A hmac-md5 0x96358c90783bbfa3d7b196ceabe0536b; 
 
# ESP SAs using 192 bit long keys (168 + 24 parity) 
add 192.168.6.1 192.168.6.254 esp 0x201 -E 3des-cbc 0x7aeaca3f87d060a12f4a4487d5a5c3355920fae69a96c831; 
add 192.168.6.254 192.168.6.1 esp 0x301 -E 3des-cbc 0xf6ddb555acfd9d77b03ea3843f2653255afe8eb5573965df; 
 
# Security policies 
spdadd 192.168.6.1 192.168.6.254 any -P out ipsec 
esp/transport//require 
ah/transport//require; 
           
spdadd 192.168.6.254 192.168.6.1 any -P in ipsec 
esp/transport//require 
ah/transport//require; 
 
spdflush; 
spdadd 127.0.0.1 127.0.0.1 icmp 
        -P out ipsec 
        esp/transport//require ; 
spdadd ::1 ::1 icmp6 
        -P out ipsec 
        esp/transport//require ; 
 
flush; 
add 127.0.0.1 127.0.0.1 esp 0x1000 
        -m transport 
        -E des-cbc "kamekame"; 
add ::1 ::1 esp 0x1001 
        -m transport 
        -E des-cbc "hagehage"; 
flush;