archive
/
windows-xp
mirror of https://github.com/tongzx/nt5src
2
0
Fork 0
Code Issues Projects Releases Wiki Activity
Source code of Windows XP (NT5)
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
8 Commits
1 Branch
0 Tags
2.0 GiB
Tree: 744f0b4006
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '744f0b4006'
${ noResults }
windows-xp/Source/XPSP1/NT/net/ipsec/ipseccmd/tests.bat

173 lines
5.4 KiB
Raw Normal View History

Add source files
4 years ago
  1. REM - Functional test script for IPSECPOL
  2. REM - by RandyRam and DKalin
  4. REM - Tests all flags in both modes
  5. REM - Verification is manual :( for now
  7. set WORKINGDIR=
  9. REM - This is for boundschecker or ntsd
  10. REM - each ipsecpol execution will be preceded with it
  12. set PREAMBLE=
  13. rem set PREAMBLE=ntsd -gG
  15. set IPSECPOL=ipseccmd.exe
  17. pushd %WORKINGDIR%
  19. net stop policyagent && net start policyagent
  21. if "%1"=="STATIC" goto STATIC
  23. REM -------------------
  24. REM - Dynamic Mode -
  25. REM -------------------
  27. echo General Test
  29. %PREAMBLE% %IPSECPOL% -f 10.*+11.* 172.31.240.0/255.255.248.0+157.55.0.0/255.255.0.0 144.92.*:21+144.93.*::TCP *+dkalin-00:5000:UDP -n AH[MD5] -aK PRE:supercalifragilisticexpialidocious -1s des-md5-1 3DES-Sha-2 dEs-MD5-1 -1k 20000S/20Q -1e 400 -1f0+* 10.*+11.* dkalin-00=dkalin-04 -confirm
  31. %PREAMBLE% %IPSECPOL% -f 10.*+11.*::TCP 172.31.232.0/255.255.248.0+157.54.0.0/255.255.0.0 144.94.*:21+144.95.*::TCP *+dkalin-00:5001:UDP -n AH[MD5]PFS esp[Des,sha]PFS Ah[Sha]+ESP[3des,NONE]21000K/600SPFS -aK CERT:"CN=CA1, OU=O, O=MEME,L=X, S=WA, C=DE, E=ME@here" -1p -confirm
  33. pause Check settings and press any key
  35. %PREAMBLE% %IPSECPOL% show filters
  37. pause Check settings and press any key
  39. echo Tunnel test
  41. %PREAMBLE% %IPSECPOL% -f 10.11.12.*=12.11.10.*::ICMP 10.11.12.*=12.11.10.*::TCP -t 12.11.10.1 -confirm
  42. %PREAMBLE% %IPSECPOL% -f 12.11.10.*=10.11.12.*::ICMP 12.11.10.*=10.11.12.*::TCP -t 10.11.12.1 -confirm
  44. pause Check settings and press any key
  46. %PREAMBLE% %IPSECPOL% show filters
  48. pause Check settings and press any key
  50. echo Me to Any dialup, soft
  52. %PREAMBLE% %IPSECPOL% -f 0+* -n AH[MD5] -dialup -soft -confirm
  54. pause Check settings and press any key
  56. %PREAMBLE% %IPSECPOL% show filters policies
  58. pause Check settings and press any key
  60. echo Shutting down PA test/dangling p1 flag
  61. net stop policyagent
  63. %PREAMBLE% %IPSECPOL% \\%COMPUTERNAME% -f (0+*) [0+products2]
  64. pause Check settings and press any key
  66. %PREAMBLE% %IPSECPOL% \\%COMPUTERNAME% show filters stats
  68. pause Check settings and press any key
  70. REM To test in dynamic mode yet:
  71. rem - pathos
  72. rem - lower case KSQ
  74. if "%1"=="DYNAMIC" goto EOF
  76. %PREAMBLE% %IPSECPOL% -u
  78. :STATIC
  79. echo Basic policy creation, using all flags
  81. %PREAMBLE% %IPSECPOL% -w REG -p "IPSECPOL TEST":100 -r Rule1 -f 0=* 10.*+11.* 172.31.240.0/255.255.248.0+157.55.0.0/255.255.0.0 144.92.*:21+144.93.*::TCP *+dkalin-00:5000:UDP -n AH[MD5] esp[Des,sha] Ah[Sha]+ESP[3des,NONE]21000K/600SPFS -aK -1s des-md5-1 3DES-Sha-2 dEs-MD5-1 -1k 20000S/20Q -x
  83. %PREAMBLE% %IPSECPOL% -w REG -p "IPSECPOL TEST":100 -r Rule10 -f *=0 12.*+13.* 172.31.232.0/255.255.248.0+157.54.0.0/255.255.0.0 144.94.*:21+144.95.*::TCP *+dkalin-00:5001:UDP -a PRE:supercalifragilisticexpialidocious CERT:"CN=CA1, OU=O, O=MEME,L=X, S=WA, C=DE, E=ME@here" -1s des-md5-1 3DES-Sha-2 dEs-MD5-1 -1k 20000S/20Q -x
  85. pause Check settings and press any key
  87. %PREAMBLE% %IPSECPOL% show filters auth
  89. pause Check settings and press any key
  91. echo Basic policy update, using all flags
  93. %PREAMBLE% %IPSECPOL% -w REG -p "IPSECPOL TEST":100 -r Rule1 -f 0+1.1.1.1 -n AH[MD5] INPASS -soft -aK -t 129.2.2.2 -lan -1s DES-SHA-1 -1k 20000S/20Q
  95. pause Check settings and press any key
  97. %PREAMBLE% %IPSECPOL% show filters sas
  99. pause Check settings and press any key
  101. net stop policyagent
  102. %PREAMBLE% %IPSECPOL% -w REG -p "IPSECPOL TEST":3 -r Rule2 -f 0+172.* -n BLOCK -1s DES-SHA-1 -1k 20000S/20Q -x
  104. pause Check settings and press any key
  106. %PREAMBLE% %IPSECPOL% show all
  108. pause Check settings and press any key
  110. %PREAMBLE% %IPSECPOL% -w REG -p "IPSECPOL TEST":3 -r Rule3 -f 0+172.* -n PASS -1p -1s DES-SHA-1 -y
  112. pause Check settings and press any key
  114. %PREAMBLE% %IPSECPOL% show filters
  116. pause Check settings and press any key
  118. %PREAMBLE% %IPSECPOL% -w REG -p "IPSECPOL TEST":3 -r Rule3 -o
  120. pause Check settings and press any key
  122. %PREAMBLE% %IPSECPOL% show filters
  124. pause Check settings and press any key
  126. echo DS policy creation
  127. %PREAMBLE% %IPSECPOL% -w DS -p "IPSECPOL TEST":100 -r Rule1 -f 0=* 10.*+11.* 172.31.240.0/255.255.248.0+157.55.0.0/255.255.0.0 144.92.*:21+144.93.*::TCP *+dkalin-00:5000:UDP -n AH[MD5] esp[Des,sha] Ah[Sha]+ESP[3des,NONE]21000K/600SPFS -aK -1s des-md5-1 3DES-Sha-2 dEs-MD5-1 -1k 20000S/20Q
  129. pause Check settings and press any key
  131. %PREAMBLE% %IPSECPOL% show filters
  133. pause Check settings and press any key
  134. %PREAMBLE% %IPSECPOL% -w DS -p "IPSECPOL TEST":100 -r Rule1 -o
  135. pause Check settings and press any key
  137. %PREAMBLE% %IPSECPOL% show filters
  139. pause Check settings and press any key
  141. echo policy creation using remote registry apis
  142. %PREAMBLE% %IPSECPOL% -w REG:%COMPUTERNAME% -p "IPSECPOL TEST":100 -r Rule1 -f 0=* 10.*+11.* 172.31.240.0/255.255.248.0+157.55.0.0/255.255.0.0 144.92.*:21+144.93.*::TCP *+dkalin-00:5000:UDP -n AH[MD5] esp[Des,sha] Ah[Sha]+ESP[3des,NONE]21000K/600SPFS -aK -1s des-md5-1 3DES-Sha-2 dEs-MD5-1 -1k 20000S/20Q
  144. pause Check settings and press any key
  146. %PREAMBLE% %IPSECPOL% show filters
  148. pause Check settings and press any key
  149. %PREAMBLE% %IPSECPOL% -w REG:%COMPUTERNAME% -p "IPSECPOL TEST":100 -r Rule1 -o
  150. pause Check settings and press any key
  152. %PREAMBLE% %IPSECPOL% show filters
  154. pause Check settings and press any key
  156. echo ******************************
  157. echo Don't forget to check the test
  158. echo version stuff: min rekey params
  159. echo des40, and export group
  160. echo ******************************
  162. :EOF
  163. echo removing stuff
  165. %PREAMBLE% %IPSECPOL% -u
  166. pause Check settings and press any key
  168. %PREAMBLE% %IPSECPOL% show all
  170. pause Check settings and press any key
  173. popd