No. | Title |
Result | Log | Script | Packet | Dump (bin) |
| Host Transport Mode |
|
|
|
|
|
| Initialize for Host |
|
|
|
|
|
1 | Set Global Address and Check (Host) | PASS | X | X | X | Link0 |
| Host Transport AH Outbound |
|
|
|
|
|
| Host Transport AH Outbound with authentication |
|
|
|
|
|
2 | Outbound AH packet (HMAC-MD5) | PASS | X | X | X | Link0 |
3 | Outbound AH packet (HMAC-SHA1) | PASS | X | X | X | Link0 |
| Host Transport AH Outbound Header Order |
|
|
|
|
|
4 | Outbound Header Order (Fragment Header vs AH) | FAIL (73) | - | X | X | - |
| Host Transport AH Outbound Connect SA bundles |
|
|
|
|
|
5 | Connect two SA bundles with different spi, different IPdst | PASS | X | X | X | Link0 |
6 | Connect two SA bundles with same spi, different IPdst | PASS | X | X | X | Link0 |
| Host Transport AH Inbound |
|
|
|
|
|
| Host Transport AH Inbound with authentication |
|
|
|
|
|
7 | Inbound AH packet (HMAC-MD5) | PASS | X | X | X | Link0 |
8 | Inbound AH packet (HMAC-SHA1) | PASS | X | X | X | Link0 |
| Host Transport AH Inbound Header Order |
|
|
|
|
|
9 | Inbound Header Order (Fragment Header vs AH) | FAIL (73) | - | X | X | - |
| Host Transport AH Inbound Connect SA bundles |
|
|
|
|
|
10 | Connect two SA bundles with different spi, different IPsrc | PASS | X | X | X | Link0 |
11 | Connect two SA bundles with different spi, same IPsrc | PASS | X | X | X | Link0 |
| Host Transport AH Inbound, Detect modification of packet with AH |
|
|
|
|
|
12 | Detect modification of IPv4 header IP dst address with AH | PASS | X | X | X | Link0 |
13 | Detect modification of IPv4 header IP src address with AH | PASS | X | X | X | Link0 |
14 | Undetect modification of IPv4 header TTL with AH | PASS | X | X | X | Link0 |
15 | Detect modification of payload with AH | PASS | X | X | X | Link0 |
| Host Transport ESP Outbound |
|
|
|
|
|
| ESP Outbound without authentication |
|
|
|
|
|
16 | Outbound ESP packet (DES-CBC) | PASS | X | X | X | Link0 |
17 | Outbound ESP packet (3DES-CBC) | PASS | X | X | X | Link0 |
| ESP Outbound with authentication |
|
|
|
|
|
18 | Outbound ESP packet (NULL, HMAC-MD5) | PASS | X | X | X | Link0 |
19 | Outbound ESP packet (NULL, HMAC-SHA1) | PASS | X | X | X | Link0 |
20 | Outbound ESP packet (DES-CBC, HMAC-MD5) | PASS | X | X | X | Link0 |
21 | Outbound ESP packet (DES-CBC, HMAC-SHA1) | PASS | X | X | X | Link0 |
22 | Outbound ESP packet (3DES-CBC, HMAC-MD5) | PASS | X | X | X | Link0 |
23 | Outbound ESP packet (3DES-CBC, HMAC-SHA1) | PASS | X | X | X | Link0 |
| ESP Outbound Padding |
|
|
|
|
|
24 | Outbound Padding (NULL, HMAC-MD5) | PASS | X | X | X | Link0 |
25 | Outbound Padding (DES-CBC, HMAC-MD5) | PASS | X | X | X | Link0 |
26 | Outbound Padding (3DES-CBC, HMAC-MD5) | PASS | X | X | X | Link0 |
| ESP Outbound Header Order |
|
|
|
|
|
27 | Header Order (Fragment Header vs ESP) | FAIL (73) | - | X | X | - |
| ESP Outbound Connect SA bundles |
|
|
|
|
|
28 | Connect two SA bundles with different spi, different IPdst | PASS | X | X | X | Link0 |
29 | Connect two SA bundles with same spi, different IPdst | PASS | X | X | X | Link0 |
| Host Transport ESP Inbound |
|
|
|
|
|
| ESP Inbound without authentication |
|
|
|
|
|
30 | Inbound ESP packet (DES-CBC) | PASS | X | X | X | Link0 |
31 | Inbound ESP packet (3DES-CBC) | PASS | X | X | X | Link0 |
32 | Inbound ESP packet (Invalid Encryption Key) | PASS | X | X | X | Link0 |
| ESP Inbound with authentication |
|
|
|
|
|
33 | Inbound ESP packet (NULL, HMAC-MD5) | PASS | X | X | X | Link0 |
34 | Inbound ESP packet (NULL, HMAC-SHA1) | PASS | X | X | X | Link0 |
35 | Inbound ESP packet (DES-CBC, HMAC-MD5) | PASS | X | X | X | Link0 |
36 | Inbound ESP packet (DES-CBC, HMAC-SHA1) | PASS | X | X | X | Link0 |
37 | Inbound ESP packet (3DES-CBC, HMAC-MD5) | PASS | X | X | X | Link0 |
38 | Inbound ESP packet (3DES-CBC, HMAC-SHA1) | PASS | X | X | X | Link0 |
39 | Inbound ESP packet (Invalid Authentication Key) | PASS | X | X | X | Link0 |
| ESP Inbound Padding |
|
|
|
|
|
40 | Inbound Padding (NULL, HMAC-MD5) | PASS | X | X | X | Link0 |
41 | Inbound Padding (DES-CBC, HMAC-MD5) | PASS | X | X | X | Link0 |
42 | Inbound Padding (3DES-CBC, HMAC-MD5) | PASS | X | X | X | Link0 |
43 | Padding Length is 255 (max) | PASS | X | X | X | Link0 |
44 | Invalid Padding | PASS | X | X | X | Link0 |
| ESP Inbound Header Order |
|
|
|
|
|
45 | Header Order (Fragment Header vs ESP) | FAIL (73) | - | X | X | - |
| ESP Inbound Connect SA bundles |
|
|
|
|
|
46 | Connect two SA bundles with different spi, different IPsrc | PASS | X | X | X | Link0 |
47 | Connect two SA bundles with different spi, same IPsrc | PASS | X | X | X | Link0 |
| Host Transport AH-ESP Outbound |
|
|
|
|
|
48 | Outbound AH-ESP combination | PASS | X | X | X | Link0 |
| Host Transport AH-ESP Inbound |
|
|
|
|
|
49 | Inbound AH-ESP combination | PASS | X | X | X | Link0 |
| Host Transport Common Outbound |
|
|
|
|
|
50 | Select SPD entry (policy=discard,none) | PASS | X | X | X | Link0 |
| Host Transport Common Inbound |
|
|
|
|
|
| Inbound Connect SA bundles |
|
|
|
|
|
51 | Connect two SA bundles with same spi, same IPsrc, different protocol | PASS | X | X | X | Link0 |
52 | Select SPD entry (policy=discard,none) | PASS | X | X | X | Link0 |
| Router Tunnel Mode |
|
|
|
|
|
| Initialize for Router |
|
|
|
|
|
53 | Set Global Address and Check (Router) | FAIL (73) | - | X | X | - |
| Router Tunnel AH Outbound |
|
|
|
|
|
| Router Tunnel AH Outbound with authentication |
|
|
|
|
|
54 | Outbound AH packet (HMAC-MD5) | FAIL (73) | - | X | X | - |
55 | Outbound AH packet (HMAC-SHA1) | FAIL (73) | - | X | X | - |
| Router Tunnel AH Outbound Connect SA bundles |
|
|
|
|
|
56 | Connect two SA bundles with different spi, different IPdst | FAIL (73) | - | X | X | - |
57 | Connect two SA bundles with same spi, different IPdst | FAIL (73) | - | X | X | - |
| Router Tunnel AH Inbound |
|
|
|
|
|
| Router Tunnel AH Inbound with authentication |
|
|
|
|
|
58 | Inbound AH Tunnel packet (with SPD entry) | FAIL (73) | - | X | X | - |
59 | Inbound AH packet (HMAC-MD5) | FAIL (73) | - | X | X | - |
60 | Inbound AH packet (HMAC-SHA1) | FAIL (73) | - | X | X | - |
| Router Tunnel AH Inbound Connect SA bundles |
|
|
|
|
|
61 | Connect two SA bundles with different spi, different IPsrc | FAIL (73) | - | X | X | - |
62 | Connect two SA bundles with different spi, same IPsrc | FAIL (73) | - | X | X | - |
| Router Tunnel AH Inbound, Detect modification of packet with AH |
|
|
|
|
|
63 | Detect modification of IPv4 header IP dst address with AH | FAIL (73) | - | X | X | - |
64 | Detect modification of IPv4 header IP src address with AH | FAIL (73) | - | X | X | - |
65 | Undetect modification of IPv4 header TTL with AH | FAIL (73) | - | X | X | - |
66 | Detect modification of inner IPv4 header TTL of AH tunnel | FAIL (73) | - | X | X | - |
67 | Detect modification of inner payload of AH tunnel | FAIL (73) | - | X | X | - |
| Router Tunnel ESP Outbound |
|
|
|
|
|
| ESP Outbound without authentication |
|
|
|
|
|
68 | Outbound ESP packet (DES-CBC) | FAIL (73) | - | X | X | - |
69 | Outbound ESP packet (3DES-CBC) | FAIL (73) | - | X | X | - |
| ESP Outbound with authentication |
|
|
|
|
|
70 | Outbound ESP packet (NULL, HMAC-MD5) | FAIL (73) | - | X | X | - |
71 | Outbound ESP packet (NULL, HMAC-SHA1) | FAIL (73) | - | X | X | - |
72 | Outbound ESP packet (DES-CBC, HMAC-MD5) | FAIL (73) | - | X | X | - |
73 | Outbound ESP packet (DES-CBC, HMAC-SHA1) | FAIL (73) | - | X | X | - |
74 | Outbound ESP packet (3DES-CBC, HMAC-MD5) | FAIL (73) | - | X | X | - |
75 | Outbound ESP packet (3DES-CBC, HMAC-SHA1) | FAIL (73) | - | X | X | - |
| ESP Outbound Padding |
|
|
|
|
|
76 | Outbound Padding (NULL) | FAIL (73) | - | X | X | - |
77 | Outbound Padding (DES-CBC) | FAIL (73) | - | X | X | - |
78 | Outbound Padding (3DES-CBC) | FAIL (73) | - | X | X | - |
| ESP Outbound Connect SA bundles |
|
|
|
|
|
79 | Connect two SA bundles with different spi, different IPdst | FAIL (73) | - | X | X | - |
80 | Connect two SA bundles with same spi, different IPdst | FAIL (73) | - | X | X | - |
| Router Tunnel ESP Inbound |
|
|
|
|
|
81 | Inbound ESP Tunnel packet (with SPD entry) | FAIL (73) | - | X | X | - |
| ESP Inbound without authentication |
|
|
|
|
|
82 | Inbound ESP packet (DES-CBC) | FAIL (73) | - | X | X | - |
83 | Inbound ESP packet (3DES-CBC) | FAIL (73) | - | X | X | - |
84 | Inbound ESP packet (Invalid Encryption Key) | FAIL (73) | - | X | X | - |
| ESP Inbound with authentication |
|
|
|
|
|
85 | Inbound ESP packet (NULL, HMAC-MD5) | FAIL (73) | - | X | X | - |
86 | Inbound ESP packet (NULL, HMAC-SHA1) | FAIL (73) | - | X | X | - |
87 | Inbound ESP packet (DES-CBC, HMAC-MD5) | FAIL (73) | - | X | X | - |
88 | Inbound ESP packet (DES-CBC, HMAC-SHA1) | FAIL (73) | - | X | X | - |
89 | Inbound ESP packet (3DES-CBC, HMAC-MD5) | FAIL (73) | - | X | X | - |
90 | Inbound ESP packet (3DES-CBC, HMAC-SHA1) | FAIL (73) | - | X | X | - |
91 | Inbound ESP packet (Invalid Authentication Key) | FAIL (73) | - | X | X | - |
| ESP Inbound Padding |
|
|
|
|
|
92 | Inbound Padding (NULL) | FAIL (73) | - | X | X | - |
93 | Inbound Padding (DES-CBC) | FAIL (73) | - | X | X | - |
94 | Inbound Padding (3DES-CBC) | FAIL (73) | - | X | X | - |
95 | Padding Length is 255 (max) | FAIL (73) | - | X | X | - |
96 | Invalid Padding | FAIL (73) | - | X | X | - |
| ESP Inbound Connect SA bundles |
|
|
|
|
|
97 | Connect two SA bundles with different spi, different IPsrc | FAIL (73) | - | X | X | - |
98 | Connect two SA bundles with different spi, same IPsrc | FAIL (73) | - | X | X | - |
| Router Tunnel Common Inbound |
|
|
|
|
|
| Inbound Connect SA bundles |
|
|
|
|
|
99 | Connect two SA bundles with same spi, same IPsrc, different protocol | FAIL (73) | - | X | X | - |