From ba5d28f79126ce94484513259488a5145479d6fb Mon Sep 17 00:00:00 2001
From: seantywork <seantywork@gmail.com>
Date: Fri, 12 Dec 2025 21:35:42 +0900
Subject: [PATCH] add this and that

---
 virsh-create-dut/dut/dev1/install.sh     | 146 +++++++++++++++++++++++
 virsh-create-dut/dut/dev1/network-del.sh |   7 ++
 virsh-create-dut/dut/dev1/network.sh     |  39 ++++++
 3 files changed, 192 insertions(+)
 create mode 100755 virsh-create-dut/dut/dev1/install.sh
 create mode 100755 virsh-create-dut/dut/dev1/network-del.sh
 create mode 100755 virsh-create-dut/dut/dev1/network.sh

diff --git a/virsh-create-dut/dut/dev1/install.sh b/virsh-create-dut/dut/dev1/install.sh
new file mode 100755
index 0000000..b2817f9
--- /dev/null
+++ b/virsh-create-dut/dut/dev1/install.sh
@@ -0,0 +1,146 @@
+#!/bin/bash
+
+sudo apt-get update
+
+sudo apt-get -y install build-essential make autoconf automake
+
+sudo apt-get -y install libgmp-dev libsystemd-dev libcurl4-openssl-dev libldap-dev libtss2-dev libgcrypt20-dev libpam0g-dev libip4tc-dev pkg-config init libtss2-tcti-tabrmd0
+
+
+pushd ~
+
+curl -L https://github.com/strongswan/strongswan/releases/download/6.0.1/strongswan-6.0.1.tar.gz -o strongswan-6.0.1.tar.gz
+
+tar -xzf strongswan-6.0.1.tar.gz
+
+pushd strongswan-6.0.1
+
+./configure --prefix=/usr --sysconfdir=/etc --enable-charon --enable-systemd \
+--disable-defaults \
+--enable-static \
+--enable-test-vectors \
+--enable-pki --enable-ikev2 --enable-vici --enable-swanctl \
+--enable-ldap \
+--enable-pkcs11 \
+--enable-tpm \
+--enable-aesni \
+--enable-aes \
+--enable-rc2 \
+--enable-sha2 \
+--enable-sha1 \
+--enable-md5 \
+--enable-mgf1 \
+--enable-rdrand \
+--enable-random \
+--enable-nonce \
+--enable-x509 \
+--enable-revocation \
+--enable-constraints \
+--enable-pubkey \
+--enable-pkcs1 \
+--enable-pkcs7 \
+--enable-pkcs8 \
+--enable-pkcs12 \
+--enable-pgp \
+--enable-dnskey \
+--enable-sshkey \
+--enable-pem \
+--enable-openssl \
+--enable-gcrypt \
+--enable-af-alg \
+--enable-fips-prf  \
+--enable-gmp  \
+--enable-curve25519 \
+--enable-agent \
+--enable-chapoly \
+--enable-xcbc \
+--enable-cmac \
+--enable-hmac \
+--enable-ctr \
+--enable-ccm \
+--enable-gcm \
+--enable-ntru \
+--enable-drbg \
+--enable-curl \
+--enable-attr \
+--enable-kernel-netlink \
+--enable-resolve \
+--enable-socket-default \
+--enable-connmark \
+--enable-forecast \
+--enable-farp \
+--enable-stroke \
+--enable-vici \
+--enable-updown \
+--enable-eap-identity \
+--enable-eap-aka \
+--enable-eap-md5 \
+--enable-eap-gtc \
+--enable-eap-mschapv2 \
+--enable-eap-dynamic \
+--enable-eap-radius \
+--enable-eap-tls \
+--enable-eap-ttls \
+--enable-eap-peap \
+--enable-eap-tnc \
+--enable-xauth-generic \
+--enable-xauth-eap \
+--enable-xauth-pam \
+--enable-tnc-tnccs \
+--enable-dhcp \
+--enable-lookip \
+--enable-error-notify \
+--enable-certexpire \
+--enable-led \
+--enable-addrblock \
+--enable-unity \
+--enable-counters \
+--enable-whitelist 
+
+make
+
+sudo make install
+
+popd
+
+popd
+
+
+sudo systemctl enable strongswan
+
+sudo systemctl start strongswan
+
+pushd ~
+
+git clone https://github.com/xdp-project/xdp-tools
+
+sudo apt update
+
+sudo apt install -y clang llvm libelf-dev libpcap-dev libc6-dev-i386 m4
+
+sudo apt install -y linux-tools-$(uname -r)
+
+sudo apt install -y linux-headers-$(uname -r)
+
+pushd xdp-tools
+
+./configure
+
+popd
+
+pushd xdp-tools
+
+make
+
+sudo make install
+
+popd
+
+
+pushd xdp-tools/lib/libbpf/src
+
+sudo make install
+
+popd
+
+popd
diff --git a/virsh-create-dut/dut/dev1/network-del.sh b/virsh-create-dut/dut/dev1/network-del.sh
new file mode 100755
index 0000000..bba9712
--- /dev/null
+++ b/virsh-create-dut/dut/dev1/network-del.sh
@@ -0,0 +1,7 @@
+#!/bin/bash
+
+set -exo pipefail
+
+sudo ip netns del net1 
+sudo ip netns del net2
+sudo ip link del br0
diff --git a/virsh-create-dut/dut/dev1/network.sh b/virsh-create-dut/dut/dev1/network.sh
new file mode 100755
index 0000000..dce42cd
--- /dev/null
+++ b/virsh-create-dut/dut/dev1/network.sh
@@ -0,0 +1,39 @@
+#!/bin/bash
+
+set -exo pipefail
+
+sudo ip netns add net1
+sudo ip netns add net2
+sudo ip link add dev veth1 type veth peer name veth2 netns net1
+sudo ip netns exec net1 ip link add dev veth3 type veth peer name veth4 netns net2
+
+sudo ip link add br0 type bridge stp_state 0
+sudo ip link set ens3 master br0
+sudo ip link set veth1 master br0
+sudo ip addr add 192.168.101.25/24 dev br0
+sudo ip addr add 10.168.0.254/24 dev br0
+
+sudo ip netns exec net1 ip link add br1 type bridge stp_state 1
+sudo ip netns exec net1 ip link set veth2 master br1
+sudo ip netns exec net1 ip link set veth3 master br1
+sudo ip netns exec net1 ip addr add 10.168.0.1/24 dev br1
+
+sudo ip netns exec net2 ip addr add 10.168.0.2/24 dev veth4
+
+sudo ip link set up ens3
+sudo ip link set up veth1 
+sudo ip link set up br0
+sudo ip route add default via 192.168.101.1 dev br0
+sudo sysctl -w net.ipv4.ip_forward=1
+
+sudo ip netns exec net1 ip link set up lo
+sudo ip netns exec net1 ip link set up veth2 
+sudo ip netns exec net1 ip link set up veth3
+sudo ip netns exec net1 ip link set up br1
+sudo ip netns exec net1 ip route add default via 10.168.0.254 dev br1
+sudo ip netns exec net1 sysctl -w net.ipv4.ip_forward=1
+
+sudo ip netns exec net2 ip link set up lo
+sudo ip netns exec net2 ip link set up veth4
+sudo ip netns exec net2 ip route add default via 10.168.0.1 dev veth4
+sudo ip netns exec net2 sysctl -w net.ipv4.ip_forward=1
-- 
2.43.0