Hello, some comments inline.
Miika Komu wrote:
On Fri, 31 Mar 2006, Fernando Moreira wrote:
Hello Miika, thank you for your help.
I looked up the manual and didn't find how to generate de HIT.
http://hipl.hiit.fi/hipl/manual/ch06.html
If you want to know the HITs of the localhost, run "ifconfig dummy0" or "ip addr show dummy0".
Browsing the mailing list i found one mail from January 2005 where Irene Garcia Vargas spoke about generating a valid HIT. Are that instructions up to date? Doing hipconf add hi default i obtained 4 different HITs:
debug(crypto.c:1053@dsa_to_hit): HIT is 4075:f2ca:93ec:86b6:1317:f25f:3b21:d5d
debug(debug.c:430@hip_print_hit): DSA HIT: 4075:f2ca:93ec:86b6:1317:f25f:3b21:0d5d
debug(crypto.c:1053@dsa_to_hit): HIT is 4059:815f:5d24:d5bf:e831:9236:b493:ca3d
debug(debug.c:430@hip_print_hit): DSA HIT: 4059:815f:5d24:d5bf:e831:9236:b493:ca3d
debug(crypto.c:1184@rsa_to_hit): HIT is 40ac:e6b2:8a0e:28d4:cd9a:b844:b1d6:6df9
debug(debug.c:430@hip_print_hit): RSA HIT: 40ac:e6b2:8a0e:28d4:cd9a:b844:b1d6:6df9
debug(crypto.c:1184@rsa_to_hit): HIT is 40ba:f913:a523:9770:dbd5:e4ca:ee4:f46b
debug(debug.c:430@hip_print_hit): RSA HIT: 40ba:f913:a523:9770:dbd5:e4ca:0ee4:f46b
This is one way to find out the HITs. Btw, it seems like you are using an
older snapshot of the code.
The HIT's generated as said before were not the ones attributed to the dummy device. I was using this HITs to establish communication when i should the other ones. However, i still don't know what are these HITs for.
Because i didn't know which one to use i tried the 4 of them using both methods you explained in your previous mail:
1) hipconf add map HIT IP ping6 HIT 2) <configure /etc/hip/hosts and /etc/hosts to have HOSTNAME> ping6 HOSTNAME
Everytime i did ping6 any of the HITS i got Host Unreachable.
Questions:
* Did you have hipd running? * Can you ping the peer using plain IP addresses?
What is the proper way to generate a HIT? If i understood correctly the /etc/hosts should have:
<IP> PeerHostName
and in /etc/hip/hosts
<HIT> PeerHostName
The daemon will then obtain <IP> <HIT> mapping.
Is this correct?
This is correct. Just to be sure, I have to ask you one question. Did you swap the HITs of the hosts? I mean that if you look at the HIT of host A at host A (from ifconfig or hipd output), you need to insert the HIT to /etc/hip/hosts at host B, and not A.
You can also try to use the "hipsetup" software with "-b" option:
http://hipl.hiit.fi/hipl/manual/ch06.html
There is also a script called "hipsetup" in "hipl/test" directory for quick testing of the base exchange. Run it without arguments to see how it is used. The script requires some external applications that will be prompted if they are not found.
I did exchange the HITs between the Hosts. The test application that is provided in the source works perfectly. This method of mapping HITs in IPs is only valid in a scenario where we have HIP aware applications, right? I could't use this method successfully with ping6 for example. For ping6 i had to use tools/hipconf add map hit ipv6.
Fernando