#!/bin/sh

export TZ=$(cat /etc/TZ)

if [ $1 = "phase1_down" ]; then
    logger "IPsec:phase1_l2tp:down:$LOCAL_ADDR,$LOCAL_PORT,$REMOTE_ADDR,$REMOTE_PORT,$REMOTE_ID"
    #
    #echo "deleteall $LOCAL_ADDR $REMOTE_ADDR esp" | /usr/sbin/setkey -c
    #echo "deleteall $REMOTE_ADDR $LOCAL_ADDR esp" | /usr/sbin/setkey -c
    #echo "spddelete $LOCAL_ADDR/32[1701] $REMOTE_ADDR/32 udp -P out ipsec esp/transport//require;" | /usr/sbin/setkey -c
    #echo "spddelete $REMOTE_ADDR/32 $LOCAL_ADDR/32[1701] udp -P in ipsec esp/transport//require;" | /usr/sbin/setkey -c
elif [ $1 = "phase1_up" ]; then
    logger "IPsec:phase1_l2tp:up:$LOCAL_ADDR,$LOCAL_PORT,$REMOTE_ADDR,$REMOTE_PORT,$REMOTE_ID"
	echo "spdadd $LOCAL_ADDR/32[1701] $REMOTE_ADDR/32 udp -P out ipsec esp/transport//require;" | /usr/sbin/setkey -c
	echo "spdadd $REMOTE_ADDR/32 $LOCAL_ADDR/32[1701] udp -P in ipsec esp/transport//require;" | /usr/sbin/setkey -c
else
    logger "IPsec:phase1_l2tp:$1:$LOCAL_ADDR,$LOCAL_PORT,$REMOTE_ADDR,$REMOTE_PORT,$REMOTE_ID"
fi
