summaryrefslogtreecommitdiffstats
path: root/extras/strongswan/vpp_sswan/docker/run.sh
blob: 3b1dc6d52237cd0c270a9819abdb595a45bd2aa0 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
#!/bin/bash

DOCKER_1_NAME="vpp_sswan_docker1"
DOCKER_2_NAME="vpp_sswan_docker2"

if [ "_$1" == "_prepare_containers" ];
then
        echo "### Building docker image for vpp sswan plugin"
        ./init_containers.sh build_docker_image
        echo "### Building the first container for vpp sswan plugin"
        ./init_containers.sh create_docker1 $DOCKER_1_NAME
        echo "### Building the second container for vpp sswan plugin"
        ./init_containers.sh create_docker2 $DOCKER_2_NAME
elif [ "_$1" == "_config" ];
then
        echo "### Configuration $DOCKER_1_NAME and $DOCKER_2_NAME"
        #ADD 1: set network namespace
        echo "### Adding network namespace for $DOCKER_1_NAME and $DOCKER_2_NAME"
        ip netns add vpp_sswan_temp
        ./exposedockernetns.sh $DOCKER_1_NAME
        ./exposedockernetns.sh $DOCKER_2_NAME
        ip netns del vpp_sswan_temp
        echo "### Adding network namespace for $DOCKER_1_NAME and $DOCKER_2_NAME finished"

        #ADD 2: settings network
        echo "### Setting network for $DOCKER_1_NAME and $DOCKER_2_NAME"

        ip link add docker_1_eth2 type veth peer name docker_2_eth2
        ip link set netns $DOCKER_1_NAME dev docker_1_eth2
        ip link set netns $DOCKER_2_NAME dev docker_2_eth2
        #ADD 3: ip address
        ip netns exec $DOCKER_2_NAME ip addr add 192.168.0.1/24 dev docker_2_eth2
        ip netns exec $DOCKER_2_NAME ip link set dev docker_2_eth2 up

        #LAN for Docker 1
        ip link add docker_1a_eth1 type veth peer name docker_1b_eth1
        ip link set netns $DOCKER_1_NAME dev docker_1a_eth1
        ip link set netns $DOCKER_1_NAME dev docker_1b_eth1
        ip netns exec $DOCKER_1_NAME ip addr add 192.168.200.10/24 dev docker_1b_eth1
        ip netns exec $DOCKER_1_NAME ip link set dev docker_1b_eth1 up
        ip netns exec $DOCKER_1_NAME ip route add 192.168.100.0/24 via 192.168.200.1 dev docker_1b_eth1

        #LAN for Docker 2
        ip link add docker_2a_eth1 type veth peer name docker_2b_eth1
        ip link set netns $DOCKER_2_NAME dev docker_2a_eth1
        ip link set netns $DOCKER_2_NAME dev docker_2b_eth1
        ip netns exec $DOCKER_2_NAME ip addr add 192.168.100.1/24 dev docker_2a_eth1
        ip netns exec $DOCKER_2_NAME ip addr add 192.168.100.10/24 dev docker_2b_eth1
        ip netns exec $DOCKER_2_NAME ip link set dev docker_2a_eth1 up
        ip netns exec $DOCKER_2_NAME ip link set dev docker_2b_eth1 up
        ip netns exec $DOCKER_2_NAME ip route add 192.168.200.0/24 via 192.168.100.1 dev docker_2b_eth1

        echo "### Setting network for $DOCKER_1_NAME and $DOCKER_2_NAME finished"

        #ADD 4: run VPP on the first docker
        echo "### Running VPP and sswan on: $DOCKER_1_NAME and $DOCKER_2_NAME"
        docker exec -i "$DOCKER_1_NAME" "/root/run_vpp.sh"
        docker exec -d $DOCKER_2_NAME systemctl restart strongswan.service
        echo "### Running VPP and sswan on: $DOCKER_1_NAME and $DOCKER_2_NAME finished"

        #ADD 5: initiate sswan
        echo "### initiate SSWAN between $DOCKER_1_NAME and $DOCKER_2_NAME"
        docker exec -i $DOCKER_1_NAME swanctl --initiate --child net-net
        echo "### initiate SSWAN between $DOCKER_1_NAME and $DOCKER_2_NAME finished"

elif [ "_$1" == "_clean" ];
then
        #DELETE 5: initiate sswan
        echo "### Terminate SSWAN between $DOCKER_1_NAME and $DOCKER_2_NAME"
        docker exec -i $DOCKER_1_NAME swanctl --terminate --child net-net
        echo "### Terminate SSWAN between $DOCKER_1_NAME and $DOCKER_2_NAME finished"

        #DELETE 4: run VPP on the first docker
        echo "### Exit VPP on: $DOCKER_1_NAME"
        docker exec -d $DOCKER_1_NAME pkill -9 -f vpp
        echo "### Exit VPP on: $DOCKER_1_NAME finished"

        echo "### Deletting settings network for $DOCKER_1_NAME and $DOCKER_2_NAME"
        #DELETE 3: ip address
        ip netns exec $DOCKER_1_NAME ip link set dev docker_1_eth2 down
        ip netns exec $DOCKER_2_NAME ip link set dev docker_2_eth2 down
        #docker 1
        ip netns exec $DOCKER_1_NAME ip link set dev docker_1b_eth1 down
        ip netns exec $DOCKER_1_NAME ip link set netns 1 dev docker_1a_eth1
        ip netns exec $DOCKER_1_NAME ip link set netns 1 dev docker_1b_eth1
        ip link del docker_1a_eth1 type veth peer name docker_1b_eth1

        #docker 2
        ip netns exec $DOCKER_2_NAME ip link set dev docker_2a_eth1 down
        ip netns exec $DOCKER_2_NAME ip link set dev docker_2b_eth1 down
        ip netns exec $DOCKER_2_NAME ip link set netns 1 dev docker_2a_eth1
        ip netns exec $DOCKER_2_NAME ip link set netns 1 dev docker_2b_eth1
        ip link del docker_2a_eth1 type veth peer name docker_2b_eth1

        #DELETE 2: settings network
        ip netns exec $DOCKER_1_NAME ip link set netns 1 dev docker_1_eth2
        ip netns exec $DOCKER_2_NAME ip link set netns 1 dev docker_2_eth2
        ip link del docker_1_eth2 type veth peer name docker_2_eth2
        echo "### Deletting settings network for $DOCKER_1_NAME and $DOCKER_2_NAME finished"

        #DELETE 1: delete network namespace
        echo "### Deleting network namespace for $DOCKER_1_NAME and $DOCKER_2_NAME"
        ip netns del $DOCKER_1_NAME
        ip netns del $DOCKER_2_NAME
        echo "### Deleting network namespace for $DOCKER_1_NAME and $DOCKER_2_NAME finished"

elif [ "_$1" == "_deleted" ];
then
        echo "### Exit VPP on: $DOCKER_1_NAME"
        docker exec -d $DOCKER_1_NAME pkill -9 -f vpp
        echo "### Exit VPP on: $DOCKER_1_NAME finished"

        echo "### Deleting container $DOCKER_1_NAME and $DOCKER_2_NAME"
        ./init_containers.sh clean $DOCKER_1_NAME
        ./init_containers.sh clean $DOCKER_2_NAME
        echo "### Deleting image"
        ./init_containers.sh clean_image
fi