NAME

  RTU_A_In_DM_Inner_IPv4H_hlim - Router Tunnel Mode AH Inbound, Detect modification of inner IPv4 header TTL of AH tunnel

TARGET

  Router

SYNOPSIS

  RTU_A_In_DM_Inner_IPv4H_hlim.seq [-tooloption ...] -pkt RTU_A_DM_Inner_IPv4H.def
    -tooloption : v6eval tool option
  See also HTR_A_common.def and HTR_common.def

INITIALIZATION

For details of Network Topology, see 00README

Set NUT's SAD and SPD as following:

                          (Link0)  (Link1)
            NET4   NET2      NET0   NET1
  HOST1_NET4 -- SG1 -- Router -- NUT -- HOST1_NET1
                 =====tunnel======>

Security Association Database (SAD)

source address	SG1_NET2
destination address	NUT_NET0
SPI	0x1000
mode	tunnel
protocol	AH
AH algorithm	HMAC-MD5
AH algorithm key	0123456789ABCDEF

Security Policy Database (SPD)

No SPD entry

TEST PROCEDURE

 Tester                      Target                      Tester
              (Link0)                     (Link1)
   |                           |                           |
   |-------------------------->|                           |
   |      ICMP Echo Request    |                           |
   |       within AH tunnel    |                           |
   |                           |-------------------------->|
   |                           |      ICMP Echo Request    |
   |                           |        Judgement #1       |
   |                           |                           |
   |-------------------------->|                           |
   |      ICMP Echo Request    |                           |
   |       within AH tunnel    |                           |
   |  (TTL of inner IPv4H is modified)                     |
   |                           | (---------------------->) |
   |                           |     No ICMP Echo Request  |
   |                           |        Judgement #2       |
   |                           |                           |
   v                           v                           v

Send ICMP Echo Request within AH tunnel to Link0
Receive ICMP Echo Request from Link1
Send ICMP Echo Request within AH tunnel (TTL of inner IPv4H is modified) to Link0
Receive nothing

ICMP Echo Request within AH tunnel to Link0

IP Header	Source Address	SG1_NET2
	Destination Address	NUT_NET0
AH	SPI	0x1000
	Sequence Number	1
	Algorithm	HMAC-MD5
	Key	0123456789ABCDEF
IP Header	Source Address	HOST1_NET4
	Destination Address	HOST1_NET1
ICMP	Type	Echo Request

ICMP Echo Request from Link1

IP Header	Source Address	HOST1_NET4
	Destination Address	HOST1_NET1
ICMP	Type	Echo Request

Send ICMP Echo Request within AH tunnel (TTL of inner IPv4H is modified) to Link0

IP Header	Source Address	SG1_NET2
	Destination Address	NUT_NET0
AH	SPI	0x1000
	Sequence Number	2
	Algorithm	HMAC-MD5
	Key	0123456789ABCDEF
IP Header	Source Address	HOST1_NET4
	Destination Address	HOST1_NET1
	TTL	64 (65 is original)
ICMP	Type	Echo Request

JUDGEMENT