From mboxrd@z Thu Jan  1 00:00:00 1970
Return-Path: <avi.cohen@huawei.com>
Received: from huawei.com (lhrrgout.huawei.com [194.213.3.17])
 by dpdk.org (Postfix) with ESMTP id 248882C57
 for <users@dpdk.org>; Sun,  7 Jan 2018 16:42:00 +0100 (CET)
Received: from LHREML714-CAH.china.huawei.com (unknown [172.18.7.108])
 by Forcepoint Email with ESMTP id 43EC527399300
 for <users@dpdk.org>; Sun,  7 Jan 2018 15:41:57 +0000 (GMT)
Received: from FRAEMA707-CHM.china.huawei.com (10.206.14.56) by
 LHREML714-CAH.china.huawei.com (10.201.108.37) with Microsoft SMTP Server
 (TLS) id 14.3.361.1; Sun, 7 Jan 2018 15:41:59 +0000
Received: from FRAEML521-MBX.china.huawei.com ([169.254.1.156]) by
 FRAEMA707-CHM.china.huawei.com ([169.254.7.54]) with mapi id 14.03.0361.001;
 Sun, 7 Jan 2018 16:41:58 +0100
From: "Avi Cohen (A)" <avi.cohen@huawei.com>
To: "users@dpdk.org" <users@dpdk.org>
Thread-Topic: IPSEC-SECGW sample application
Thread-Index: AdOHy7KaBzLhC8jTTQWybyU8LedmBw==
Date: Sun, 7 Jan 2018 15:41:56 +0000
Message-ID: <B84047ECBD981D4B93EAE5A6245AA36101594AF3@FRAEML521-MBX.china.huawei.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
x-originating-ip: [10.200.202.108]
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
MIME-Version: 1.0
X-CFilter-Loop: Reflected
Subject: [dpdk-users] IPSEC-SECGW sample application
X-BeenThere: users@dpdk.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: DPDK usage discussions <users.dpdk.org>
List-Unsubscribe: <https://dpdk.org/ml/options/users>,
 <mailto:users-request@dpdk.org?subject=unsubscribe>
List-Archive: <http://dpdk.org/ml/archives/users/>
List-Post: <mailto:users@dpdk.org>
List-Help: <mailto:users-request@dpdk.org?subject=help>
List-Subscribe: <https://dpdk.org/ml/listinfo/users>,
 <mailto:users-request@dpdk.org?subject=subscribe>
X-List-Received-Date: Sun, 07 Jan 2018 15:42:00 -0000


Hello
I'm using the DPDK17.11 and running the sample app. Ipsec_secgw.
I have 2 ports port 0 is protected and port 1 is unprotected=20
Traffic is received in the unprotected and should be sent to the protected =
 port  for encryption
But the traffic processing for the traffic received in the unprotected port=
 is going through the **process_pkts_inbound ** .
I expect that the traffic should be directed to the  **process_pkts_outboun=
d**  [where ESP headers are added etc.]
Can someone help ?


This is the config file:

#SP rules
sp ipv4 in esp protect 5 src 1.1.1.2/32 dst 1.1.2.10/32=20
#SA rules
sa in 5 cipher_algo aes-128-cbc cipher_key 0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0 =
\
auth_algo sha1-hmac auth_key 0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0 \
mode ipv4-tunnel src 172.16.1.5 dst 172.16.2.5 \
type inline-protocol-offload port_id 0
#Routing rules
rt ipv4 dst 172.16.2.5/32 port 0
rt ipv4 dst 1.1.2.0/24 port 0
rt ipv4 dst 1.1.1.0/24 port 0


and this is the command line to run the applic:

./ipsec-secgw -l 1 -n 2 -- -p 0x3 -P -u 0x2 --config=3D"(0,0,1),(1,0,1)" -f=
 ../ep1.cfg


Best Regards
Avi