2000-07-17 02:22:18 +00:00
|
|
|
.\" $FreeBSD$
|
2001-06-27 19:41:20 +00:00
|
|
|
.\" $KAME: ipsec.4,v 1.17 2001/06/27 15:25:10 itojun Exp $
|
2000-07-17 02:22:18 +00:00
|
|
|
.\"
|
2000-01-06 12:40:54 +00:00
|
|
|
.\" Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
|
|
|
|
.\" All rights reserved.
|
2000-07-17 02:22:18 +00:00
|
|
|
.\"
|
2000-01-06 12:40:54 +00:00
|
|
|
.\" Redistribution and use in source and binary forms, with or without
|
|
|
|
.\" modification, are permitted provided that the following conditions
|
|
|
|
.\" are met:
|
|
|
|
.\" 1. Redistributions of source code must retain the above copyright
|
|
|
|
.\" notice, this list of conditions and the following disclaimer.
|
|
|
|
.\" 2. Redistributions in binary form must reproduce the above copyright
|
|
|
|
.\" notice, this list of conditions and the following disclaimer in the
|
|
|
|
.\" documentation and/or other materials provided with the distribution.
|
|
|
|
.\" 3. Neither the name of the project nor the names of its contributors
|
|
|
|
.\" may be used to endorse or promote products derived from this software
|
|
|
|
.\" without specific prior written permission.
|
2000-07-17 02:22:18 +00:00
|
|
|
.\"
|
2000-01-06 12:40:54 +00:00
|
|
|
.\" THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
|
|
|
|
.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
|
|
|
.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
|
|
|
.\" ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
|
|
|
|
.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
|
|
|
.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
|
|
|
.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
|
|
|
.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
|
|
|
.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
|
|
|
.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
|
|
|
.\" SUCH DAMAGE.
|
|
|
|
.\"
|
|
|
|
.Dd January 29, 1999
|
|
|
|
.Dt IPSEC 4
|
2000-01-17 15:24:41 +00:00
|
|
|
.Os
|
2000-01-06 12:40:54 +00:00
|
|
|
.Sh NAME
|
|
|
|
.Nm ipsec
|
|
|
|
.Nd IP security protocol
|
|
|
|
.Sh SYNOPSIS
|
|
|
|
.Fd #include <sys/types.h>
|
|
|
|
.Fd #include <netinet/in.h>
|
|
|
|
.Fd #include <netinet6/ipsec.h>
|
|
|
|
.Sh DESCRIPTION
|
|
|
|
.Nm
|
|
|
|
is a security protocol in Internet Protocol layer.
|
|
|
|
.Nm
|
|
|
|
is defined for both IPv4 and IPv6
|
2001-08-07 15:48:51 +00:00
|
|
|
.Xr ( inet 4
|
2000-01-06 12:40:54 +00:00
|
|
|
and
|
2001-08-07 15:48:51 +00:00
|
|
|
.Xr inet6 4 ) .
|
2000-01-06 12:40:54 +00:00
|
|
|
.Nm
|
|
|
|
consists of two sub-protocols, namely
|
|
|
|
ESP
|
2001-08-07 15:48:51 +00:00
|
|
|
(encapsulated security payload)
|
2000-01-06 12:40:54 +00:00
|
|
|
and AH
|
2001-08-07 15:48:51 +00:00
|
|
|
(authentication header).
|
2000-01-06 12:40:54 +00:00
|
|
|
ESP protects IP payload from wire-tapping by encrypting it by
|
|
|
|
secret key cryptography algorithms.
|
|
|
|
AH guarantees integrity of IP packet
|
|
|
|
and protects it from intermediate alteration or impersonation,
|
|
|
|
by attaching cryptographic checksum computed by one-way hash functions.
|
|
|
|
.Nm
|
|
|
|
has two operation modes: transport mode and tunnel mode.
|
2001-06-27 19:41:20 +00:00
|
|
|
Transport mode is for protecting peer-to-peer communication between end nodes.
|
2000-01-06 12:40:54 +00:00
|
|
|
Tunnel mode includes IP-in-IP encapsulation operation
|
|
|
|
and is designed for security gateways, like VPN configurations.
|
|
|
|
.\"
|
2000-03-12 16:37:25 +00:00
|
|
|
.Ss Kernel interface
|
2000-01-06 12:40:54 +00:00
|
|
|
.Nm
|
2000-03-12 16:37:25 +00:00
|
|
|
is controlled by key management engine and policy engine,
|
|
|
|
in the operating system kernel.
|
2000-01-06 12:40:54 +00:00
|
|
|
.Pp
|
|
|
|
Key management engine can be accessed from the userland by using
|
|
|
|
.Dv PF_KEY
|
|
|
|
sockets.
|
|
|
|
The
|
|
|
|
.Dv PF_KEY
|
|
|
|
socket API is defined in RFC2367.
|
|
|
|
.Pp
|
|
|
|
Policy engine can be controlled by extended part of
|
|
|
|
.Dv PF_KEY
|
|
|
|
API,
|
|
|
|
.Xr setsockopt 2
|
|
|
|
operations, and
|
|
|
|
.Xr sysctl 3
|
|
|
|
interface.
|
|
|
|
The kernel implements
|
2000-07-17 02:22:18 +00:00
|
|
|
extended version of
|
2000-01-06 12:40:54 +00:00
|
|
|
.Dv PF_KEY
|
|
|
|
interface, and allows you to define IPsec policy like per-packet filters.
|
|
|
|
.Xr setsockopt 2
|
|
|
|
interface is used to define per-socket behavior, and
|
|
|
|
.Xr sysctl 3
|
|
|
|
interface is used to define host-wide default behavior.
|
|
|
|
.Pp
|
|
|
|
The kernel code does not implement dynamic encryption key exchange protocol
|
|
|
|
like IKE
|
2001-08-07 15:48:51 +00:00
|
|
|
(Internet Key Exchange).
|
2000-01-06 12:40:54 +00:00
|
|
|
That should be implemented as userland programs
|
2001-08-07 15:48:51 +00:00
|
|
|
(usually as daemons),
|
2000-01-06 12:40:54 +00:00
|
|
|
by using the above described APIs.
|
|
|
|
.\"
|
2000-03-12 16:37:25 +00:00
|
|
|
.Ss Policy management
|
2000-01-06 12:40:54 +00:00
|
|
|
The kernel implements experimental policy management code.
|
|
|
|
You can manage the IPsec policy in two ways.
|
2000-07-17 02:22:18 +00:00
|
|
|
One is to configure per-socket policy using
|
2001-06-05 12:50:33 +00:00
|
|
|
.Xr setsockopt 2 .
|
2000-01-06 12:40:54 +00:00
|
|
|
The other is to configure kernel packet filter-based policy using
|
|
|
|
.Dv PF_KEY
|
|
|
|
interface, via
|
|
|
|
.Xr setkey 8 .
|
|
|
|
In both cases, IPsec policy must be specified with syntax described in
|
|
|
|
.Xr ipsec_set_policy 3 .
|
|
|
|
.Pp
|
|
|
|
With
|
2001-06-05 12:50:33 +00:00
|
|
|
.Xr setsockopt 2 ,
|
2000-01-06 12:40:54 +00:00
|
|
|
you can define IPsec policy in per-socket basis.
|
|
|
|
You can enforce particular IPsec policy onto packets that go through
|
|
|
|
particular socket.
|
|
|
|
.Pp
|
|
|
|
With
|
|
|
|
.Xr setkey 8
|
|
|
|
you can define IPsec policy against packets,
|
|
|
|
using sort of packet filtering rule.
|
|
|
|
Refer to
|
|
|
|
.Xr setkey 8
|
|
|
|
on how to use it.
|
|
|
|
.Pp
|
|
|
|
In the latter case,
|
|
|
|
.Dq Li default
|
|
|
|
policy is allowed for use with
|
|
|
|
.Xr setkey 8 .
|
|
|
|
By configuring policy to
|
|
|
|
.Li default ,
|
|
|
|
you can refer system-wide
|
|
|
|
.Xr sysctl 8
|
|
|
|
variable for default settings.
|
|
|
|
The following variables are available.
|
|
|
|
.Li 1
|
|
|
|
means
|
|
|
|
.Dq Li use ,
|
|
|
|
and
|
|
|
|
.Li 2
|
|
|
|
means
|
|
|
|
.Dq Li require
|
|
|
|
in the syntax.
|
|
|
|
.Bl -column net.inet6.ipsec6.esp_trans_deflev integerxxx
|
2000-12-29 09:18:45 +00:00
|
|
|
.It Sy "Name Type Changeable"
|
|
|
|
.It "net.inet.ipsec.esp_trans_deflev integer yes"
|
|
|
|
.It "net.inet.ipsec.esp_net_deflev integer yes"
|
|
|
|
.It "net.inet.ipsec.ah_trans_deflev integer yes"
|
|
|
|
.It "net.inet.ipsec.ah_net_deflev integer yes"
|
|
|
|
.It "net.inet6.ipsec6.esp_trans_deflev integer yes"
|
|
|
|
.It "net.inet6.ipsec6.esp_net_deflev integer yes"
|
|
|
|
.It "net.inet6.ipsec6.ah_trans_deflev integer yes"
|
|
|
|
.It "net.inet6.ipsec6.ah_net_deflev integer yes"
|
2000-01-06 12:40:54 +00:00
|
|
|
.El
|
|
|
|
.Pp
|
|
|
|
If kernel finds no matching policy system wide default value is applied.
|
|
|
|
System wide default is specified by the following
|
|
|
|
.Xr sysctl 8
|
|
|
|
variables.
|
|
|
|
.Li 0
|
|
|
|
means
|
|
|
|
.Dq Li discard
|
|
|
|
which asks the kernel to drop the packet.
|
|
|
|
.Li 1
|
|
|
|
means
|
|
|
|
.Dq Li none .
|
|
|
|
.Bl -column net.inet6.ipsec6.def_policy integerxxx
|
2000-12-29 09:18:45 +00:00
|
|
|
.It Sy "Name Type Changeable"
|
|
|
|
.It "net.inet.ipsec.def_policy integer yes"
|
|
|
|
.It "net.inet6.ipsec6.def_policy integer yes"
|
2000-01-06 12:40:54 +00:00
|
|
|
.El
|
|
|
|
.\"
|
2000-07-17 02:22:18 +00:00
|
|
|
.Ss Miscellaneous sysctl variables
|
|
|
|
The following variables are accessible via
|
|
|
|
.Xr sysctl 8 ,
|
|
|
|
for tweaking kernel IPsec behavior:
|
|
|
|
.Bl -column net.inet6.ipsec6.inbonud_call_ike integerxxx
|
2000-12-29 09:18:45 +00:00
|
|
|
.It Sy "Name Type Changeable"
|
|
|
|
.It "net.inet.ipsec.ah_cleartos integer yes"
|
|
|
|
.It "net.inet.ipsec.ah_offsetmask integer yes"
|
|
|
|
.It "net.inet.ipsec.dfbit integer yes"
|
|
|
|
.It "net.inet.ipsec.ecn integer yes"
|
|
|
|
.It "net.inet.ipsec.debug integer yes"
|
|
|
|
.It "net.inet6.ipsec6.ecn integer yes"
|
|
|
|
.It "net.inet6.ipsec6.debug integer yes"
|
2000-07-17 02:22:18 +00:00
|
|
|
.El
|
|
|
|
.Pp
|
|
|
|
The variables are interpreted as follows:
|
2000-12-29 09:18:45 +00:00
|
|
|
.Bl -tag -width 6n
|
2000-07-17 02:22:18 +00:00
|
|
|
.It Li ipsec.ah_cleartos
|
|
|
|
If set to non-zero, the kernel clears type-of-service field in the IPv4 header
|
|
|
|
during AH authentication data computation.
|
|
|
|
The variable is for tweaking AH behavior to interoperate with devices that
|
|
|
|
implement RFC1826 AH.
|
|
|
|
It should be set to non-zero
|
2001-08-07 15:48:51 +00:00
|
|
|
(clear the type-of-service field)
|
2000-07-17 02:22:18 +00:00
|
|
|
for RFC2402 conformance.
|
|
|
|
.It Li ipsec.ah_offsetmask
|
|
|
|
During AH authentication data computation, the kernel will include
|
|
|
|
16bit fragment offset field
|
2001-08-07 15:48:51 +00:00
|
|
|
(including flag bits)
|
2000-07-17 02:22:18 +00:00
|
|
|
in IPv4 header, after computing logical AND with the variable.
|
|
|
|
The variable is for tweaking AH behavior to interoperate with devices that
|
|
|
|
implement RFC1826 AH.
|
|
|
|
It should be set to zero
|
2001-08-07 15:48:51 +00:00
|
|
|
(clear the fragment offset field during computation)
|
2000-07-17 02:22:18 +00:00
|
|
|
for RFC2402 conformance.
|
|
|
|
.It Li ipsec.dfbit
|
|
|
|
The variable configures the kernel behavior on IPv4 IPsec tunnel encapsulation.
|
|
|
|
If set to 0, DF bit on the outer IPv4 header will be cleared.
|
|
|
|
1 means that the outer DF bit is set regardless from the inner DF bit.
|
|
|
|
2 means that the DF bit is copied from the inner header to the outer.
|
2001-06-11 12:39:29 +00:00
|
|
|
The variable is supplied to conform to RFC2401 chapter 6.1.
|
2000-07-17 02:22:18 +00:00
|
|
|
.It Li ipsec.ecn
|
|
|
|
If set to non-zero, IPv4 IPsec tunnel encapsulation/decapsulation behavior will
|
|
|
|
be friendly to ECN
|
2001-08-07 15:48:51 +00:00
|
|
|
(explicit congestion notification),
|
2000-07-17 02:22:18 +00:00
|
|
|
as documented in
|
|
|
|
.Li draft-ietf-ipsec-ecn-02.txt .
|
|
|
|
.Xr gif 4
|
|
|
|
talks more about the behavior.
|
|
|
|
.It Li ipsec.debug
|
|
|
|
If set to non-zero, debug messages will be generated via
|
|
|
|
.Xr syslog 3 .
|
|
|
|
.El
|
|
|
|
.Pp
|
|
|
|
Variables under
|
|
|
|
.Li net.inet6.ipsec6
|
|
|
|
tree has similar meaning as the
|
|
|
|
.Li net.inet.ipsec
|
|
|
|
counterpart.
|
|
|
|
.\"
|
2000-01-06 12:40:54 +00:00
|
|
|
.Sh PROTOCOLS
|
|
|
|
The
|
|
|
|
.Nm
|
|
|
|
protocol works like plug-in to
|
|
|
|
.Xr inet 4
|
|
|
|
and
|
|
|
|
.Xr inet6 4
|
|
|
|
protocols.
|
|
|
|
Therefore,
|
|
|
|
.Nm
|
|
|
|
supports most of the protocols defined upon those IP-layer protocols.
|
2000-07-17 02:22:18 +00:00
|
|
|
Some of the protocols, like
|
2000-01-06 12:40:54 +00:00
|
|
|
.Xr icmp 4
|
|
|
|
or
|
|
|
|
.Xr icmp6 4 ,
|
|
|
|
may behave differently with
|
2000-11-20 18:41:33 +00:00
|
|
|
.Nm .
|
2000-01-06 12:40:54 +00:00
|
|
|
This is because
|
|
|
|
.Nm
|
|
|
|
can prevent
|
|
|
|
.Xr icmp 4
|
|
|
|
or
|
|
|
|
.Xr icmp6 4
|
|
|
|
routines from looking into IP payload.
|
|
|
|
.\"
|
|
|
|
.Sh SEE ALSO
|
|
|
|
.Xr ioctl 2 ,
|
|
|
|
.Xr socket 2 ,
|
|
|
|
.Xr ipsec_set_policy 3 ,
|
|
|
|
.Xr icmp6 4 ,
|
|
|
|
.Xr intro 4 ,
|
|
|
|
.Xr ip6 4 ,
|
|
|
|
.Xr setkey 8 ,
|
2000-03-21 02:46:28 +00:00
|
|
|
.Xr sysctl 8
|
2000-07-17 02:22:18 +00:00
|
|
|
.\".Xr racoon 8
|
|
|
|
.Sh STANDARDS
|
2000-01-06 12:40:54 +00:00
|
|
|
.Rs
|
2000-03-12 16:37:25 +00:00
|
|
|
.%A Daniel L. McDonald
|
|
|
|
.%A Craig Metz
|
|
|
|
.%A Bao G. Phan
|
|
|
|
.%T "PF_KEY Key Management API, Version 2"
|
|
|
|
.%R RFC
|
|
|
|
.%N 2367
|
2000-01-06 12:40:54 +00:00
|
|
|
.Re
|
2000-07-17 02:22:18 +00:00
|
|
|
.Pp
|
2000-01-06 12:40:54 +00:00
|
|
|
.Rs
|
|
|
|
.%A "D. L. McDonald"
|
|
|
|
.%T "A Simple IP Security API Extension to BSD Sockets"
|
2000-03-12 16:37:25 +00:00
|
|
|
.%R internet draft
|
2000-01-06 12:40:54 +00:00
|
|
|
.%N "draft-mcdonald-simple-ipsec-api-03.txt"
|
2000-03-12 16:37:25 +00:00
|
|
|
.%O work in progress material
|
2000-01-06 12:40:54 +00:00
|
|
|
.Re
|
2000-07-17 02:22:18 +00:00
|
|
|
.Sh HISTORY
|
|
|
|
The implementation described herein appeared in WIDE/KAME IPv6/IPsec stack.
|
|
|
|
.Sh BUGS
|
2000-01-06 12:40:54 +00:00
|
|
|
The IPsec support is subject to change as the IPsec protocols develop.
|
|
|
|
.Pp
|
|
|
|
There is no single standard for policy engine API,
|
|
|
|
so the policy engine API described herein is just for KAME implementation.
|
2000-07-17 02:22:18 +00:00
|
|
|
.Pp
|
2001-06-27 19:41:20 +00:00
|
|
|
AH and tunnel mode encapsulation may not work as you might expect.
|
|
|
|
If you configure inbound
|
2000-07-17 02:22:18 +00:00
|
|
|
.Dq require
|
2001-06-27 19:41:20 +00:00
|
|
|
policy against AH tunnel or any IPsec encapsulating policy with AH
|
2001-08-07 15:48:51 +00:00
|
|
|
(like
|
|
|
|
.Dq Li esp/tunnel/A-B/use ah/transport/A-B/require ) ,
|
2001-06-27 19:41:20 +00:00
|
|
|
tunnelled packets will be rejected.
|
|
|
|
This is because we enforce policy check on inner packet on reception,
|
|
|
|
and AH authenticates encapsulating
|
2001-08-07 15:48:51 +00:00
|
|
|
(outer)
|
2000-07-17 02:22:18 +00:00
|
|
|
packet, not the encapsulated
|
2001-08-07 15:48:51 +00:00
|
|
|
(inner)
|
2001-06-27 19:41:20 +00:00
|
|
|
packet
|
2001-08-07 15:48:51 +00:00
|
|
|
(so for the receiving kernel there's no sign of authenticity).
|
2001-06-27 19:41:20 +00:00
|
|
|
The issue will be solved when we revamp our policy engine to keep all the
|
|
|
|
packet decapsulation history.
|
2000-07-17 02:22:18 +00:00
|
|
|
.Pp
|
|
|
|
Under certain condition,
|
|
|
|
truncated result may be raised from the kernel
|
|
|
|
against
|
|
|
|
.Dv SADB_DUMP
|
|
|
|
and
|
|
|
|
.Dv SADB_SPDDUMP
|
|
|
|
operation on
|
|
|
|
.Dv PF_KEY
|
|
|
|
socket.
|
|
|
|
This occurs if there are too many database entries in the kernel
|
|
|
|
and socket buffer for the
|
|
|
|
.Dv PF_KEY
|
|
|
|
socket is insufficient.
|
|
|
|
If you manipulate many IPsec key/policy database entries,
|
|
|
|
increase the size of socket buffer.
|