The static multicast SA introduces "multicast_group", "multicast_spi", and
"multicast_key" options to hip.conf; peers must be configured with a matching
group/SPI/key combination.
When multicast packets are received from the overlay, instead of unicasting a
copy through each established tunnel, the static key/SPI is used and an ESP
packet is sent out to the configured group. This means multicast is sent
as multicast (multiple groups mapped to one), not as unicast, having different
implications for how the ESP is routed over the underlay network.
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@260 4c5cb64f-9889-4596-9799-84b02dc3effa
modified by Jeff A. to work under Windows and to fix LSI generated with hitgen
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@257 4c5cb64f-9889-4596-9799-84b02dc3effa
response to an ESP packet with an unknown SPI as per RFC 5202.
A HIP process receiving an ICMP packet of type "Parameter Problem"
for a HIP association will send a HIP address check UPDATE to its
peer for that HIP assoication. If there is no response, that HIP
association will be deleted. If the UPDATE is successful, HIP will
ignore future ICMP packets for that HIP assoication for a configurable
amount of time. The icmp_timeout tag in the hip.conf controls this
behavior. If not present or set to a value of zero, no ICMP packets
will be sent or responded to. If set to a value greater than zero,
HIP will send and respond to ICMP packets as described above and
will ignore future ICMP packets for that number of seconds after
a successful address check UPDATE exchange.
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@245 4c5cb64f-9889-4596-9799-84b02dc3effa
messages (in seconds) configurable, i.e. the endbox_heartbeat_time
tag in the hip.conf file. Not present or a value of zero means no
heartbeat logging messages.
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@244 4c5cb64f-9889-4596-9799-84b02dc3effa
this was always defined, as kernel-only mode is no longer supported
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@224 4c5cb64f-9889-4596-9799-84b02dc3effa
mobile router support is now compiled in by default and controlled by the
-mr command-line option
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@222 4c5cb64f-9889-4596-9799-84b02dc3effa
fill in missing authors and copyright dates (using CVS/SVN history)
use doxygen tags in header block
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/branches/hipv2@191 4c5cb64f-9889-4596-9799-84b02dc3effa
this adds a space before the parenthesis for if/for/switch/while blocks
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/branches/hipv2@185 4c5cb64f-9889-4596-9799-84b02dc3effa
all changes briefly visually inspected, with some tweaking of output
the following files were excluded due to bad results (mostly C++ styling):
src/util/cfg-ifmap/ifmap_thread.h
src/util/cfg-ifmap/ifmap_client.h
src/include/hip/hip_cfg_ldap.h
src/include/hip/hip_cfg.h
src/include/hip/hip_cfg_files.h
src/include/hip/hip_cfg_map.h
src/include/hip/hip_cfg_api.h
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/branches/hipv2@183 4c5cb64f-9889-4596-9799-84b02dc3effa
as well as the ethernet header of all IP packets through the ESP tunnels.
Also, defined an endbox hello message to allow endboxes on a cross-connected
network segment to elect which endbox will forward multicast packets.
These allow for the elimination of the private host map and the need to know
legacy node MAC addresses.
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@180 4c5cb64f-9889-4596-9799-84b02dc3effa
This ensures the specified address is not selected as the preferred address
or outbound interface address (for mobile router). This allows you to use
the same interface for SSH access to the HIP machine and for HIP traffic, and
across mobility events the ignored_addr will not be used.
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/branches/hipv2@157 4c5cb64f-9889-4596-9799-84b02dc3effa
globally replace SMA_CRAWLER with a more general HIP_VPLS tag
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@118 4c5cb64f-9889-4596-9799-84b02dc3effa
from config library (port was non-zero, causing I1 over UDP)
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@105 4c5cb64f-9889-4596-9799-84b02dc3effa
replacing a broken endbox, the global peer_hi_head data structure was not
getting updated. As a result, the code for handling hip ACQUIRE and responding
to hip I1 would not progress to building an SA. This changeset adds the
ability to dynamically change endbox assignments and add additional endboxes to
the overlay after the other endboxes are already up and running.
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@88 4c5cb64f-9889-4596-9799-84b02dc3effa
pthread conditionals are unavailable on WIN32; instead of implementing them,
resolve RVS each hostname serially (as opposed to using a separate thread for
each name)
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@73 4c5cb64f-9889-4596-9799-84b02dc3effa
release 9.7.2-P3 to allow the HIP extension to DNS as specified by RFC 5205.
Added contribution from Alexander Kiening to process the HIP extension
to the DNS response and to evaluate the RVS address in the DNS response
and continue with the connection establishment process by sending I1
packets to the RVS. It will also support a list of RVSes
rather than a single RVS.
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@63 4c5cb64f-9889-4596-9799-84b02dc3effa
hip_xml.c: don't display any addresses if the peer has none
hip_util.c: don't accept LSIs from resolver when performing peer address lookup
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@58 4c5cb64f-9889-4596-9799-84b02dc3effa
- min_lifetime and max_lifetime become min_reg_lifetime and max_reg_lifetime
for clarity
- removed lifetime, reg_type_rvs, reg_type
- new disable_udp (default no) for using regular proto 139 HIP and 50 ESP
packets for outbound associations, inbound associations will match sender
- new default value of disable_dns=yes disables the DNS thread and possible
performance hit on the system
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@23 4c5cb64f-9889-4596-9799-84b02dc3effa
share the same port 50500.
remove keepalive threads and STUN code (note that this removes all instances
of the Vovida Software License); remove STUN and UDP options and initiate
UDP by default; remove extra udp params to fns and favor addr->sin_port
instead
remove old CYGWIN ifdefs, no longer supported
move crawler code into usermode/hip_endbox.c for clarity
git-svn-id: svn://svn.code.sf.net/p/openhip/code/hip/trunk@22 4c5cb64f-9889-4596-9799-84b02dc3effa
Niklas Granberg
Christoffer Lindström
Gunnar Grimsdal
PatrikLundgren
Mohammad Khodari
Jocke
Jeff Ahrenholz
Orlie Brewer