From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from huawei.com (lhrrgout.huawei.com [194.213.3.17]) by dpdk.org (Postfix) with ESMTP id 248882C57 for ; Sun, 7 Jan 2018 16:42:00 +0100 (CET) Received: from LHREML714-CAH.china.huawei.com (unknown [172.18.7.108]) by Forcepoint Email with ESMTP id 43EC527399300 for ; Sun, 7 Jan 2018 15:41:57 +0000 (GMT) Received: from FRAEMA707-CHM.china.huawei.com (10.206.14.56) by LHREML714-CAH.china.huawei.com (10.201.108.37) with Microsoft SMTP Server (TLS) id 14.3.361.1; Sun, 7 Jan 2018 15:41:59 +0000 Received: from FRAEML521-MBX.china.huawei.com ([169.254.1.156]) by FRAEMA707-CHM.china.huawei.com ([169.254.7.54]) with mapi id 14.03.0361.001; Sun, 7 Jan 2018 16:41:58 +0100 From: "Avi Cohen (A)" To: "users@dpdk.org" Thread-Topic: IPSEC-SECGW sample application Thread-Index: AdOHy7KaBzLhC8jTTQWybyU8LedmBw== Date: Sun, 7 Jan 2018 15:41:56 +0000 Message-ID: Accept-Language: en-US Content-Language: en-US X-MS-Has-Attach: X-MS-TNEF-Correlator: x-originating-ip: [10.200.202.108] Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: quoted-printable MIME-Version: 1.0 X-CFilter-Loop: Reflected Subject: [dpdk-users] IPSEC-SECGW sample application X-BeenThere: users@dpdk.org X-Mailman-Version: 2.1.15 Precedence: list List-Id: DPDK usage discussions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 07 Jan 2018 15:42:00 -0000 Hello I'm using the DPDK17.11 and running the sample app. Ipsec_secgw. I have 2 ports port 0 is protected and port 1 is unprotected=20 Traffic is received in the unprotected and should be sent to the protected = port for encryption But the traffic processing for the traffic received in the unprotected port= is going through the **process_pkts_inbound ** . I expect that the traffic should be directed to the **process_pkts_outboun= d** [where ESP headers are added etc.] Can someone help ? This is the config file: #SP rules sp ipv4 in esp protect 5 src 1.1.1.2/32 dst 1.1.2.10/32=20 #SA rules sa in 5 cipher_algo aes-128-cbc cipher_key 0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0 = \ auth_algo sha1-hmac auth_key 0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0:0 \ mode ipv4-tunnel src 172.16.1.5 dst 172.16.2.5 \ type inline-protocol-offload port_id 0 #Routing rules rt ipv4 dst 172.16.2.5/32 port 0 rt ipv4 dst 1.1.2.0/24 port 0 rt ipv4 dst 1.1.1.0/24 port 0 and this is the command line to run the applic: ./ipsec-secgw -l 1 -n 2 -- -p 0x3 -P -u 0x2 --config=3D"(0,0,1),(1,0,1)" -f= ../ep1.cfg Best Regards Avi