# Copyright (C) 2009  Internet Systems Consortium, Inc. ("ISC")
#
# Permission to use, copy, modify, and/or distribute this software for any
# purpose with or without fee is hereby granted, provided that the above
# copyright notice and this permission notice appear in all copies.
#
# THE SOFTWARE IS PROVIDED "AS IS" AND ISC DISCLAIMS ALL WARRANTIES WITH
# REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF MERCHANTABILITY
# AND FITNESS.  IN NO EVENT SHALL ISC BE LIABLE FOR ANY SPECIAL, DIRECT,
# INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES WHATSOEVER RESULTING FROM
# LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION OF CONTRACT, NEGLIGENCE
# OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN CONNECTION WITH THE USE OR
# PERFORMANCE OF THIS SOFTWARE.

# $Id: schema+a+p 1001 2010-11-30 18:56:00Z pselkirk $

SA+P - NA+P - AFTR - DST3
       HA+P -

[SND]* Ubuntu 8.10 desktop
AFTR Fedora core 10

SA+P (source A+P)
 interface eth2 10.0.10.2/24
 10.0.0.0/8 via 10.0.10.1
 192.0.2.0/8 via 10.0.10.1
 198.18.0.0/15 via 10.0.10.1

NA+P (NAT A+P)
 interface eth2 10.0.1.2/24 2001:0:0:1::2/64
 interface eth3 10.0.10.1/24
 tunnel 192.0.0.2->192.0.0.1 encap 2001:0:0:1::2->2001::1
 10.0.0.0/8 via 192.0.0.1
 192.0.2.0/8 via 192.0.0.1
 198.18.0.0/15 via 192.0.0.1
 2001::/48 via 2001:0:0:1::1

HA+P (host A+P)
 interface eth2 10.0.2.2/24 2001:0:0:2::2/64
 tunnel 192.0.0.2->192.0.0.1 encap 2001:0:0:2::2->2001::1
 10.0.0.0/8 via 192.0.0.1
 192.0.2.0/8 via 192.0.0.1
 198.18.0.0/15 via 192.0.0.1
 2001::/48 via 2001:0:0:2::1

AFTR
 eth1 (to NA+P & SA+P behind) 10.1.1.1/24 2001:0:0:1::1/64
 eth2 (to SRC2) 10.2.2.1/24 2001:0:0:2::1/64
 eth3 (to DST3) 192.0.2.1/24
 tunnel 192.0.0.1->192.0.0.2
 nat 198.18.200.1 (statics 198.18.200.2, A+P 198.18.200.3)
 10.0.0.0/8 via tunnel
 198.18.0.0/15 via tunnel

DST3
 interface eth2 192.0.2.2/24
 10.0.0.0/8 via 192.0.2.1
 192.0.0.0/29 via 192.0.2.1
 198.18.0.0/15 via 192.0.2.1

Static bindings

SA+P TCP&UDP 10.0.10.2 port 5001 <- 198.18.200.2 port 5001
HA+P TCP&UDP 10.0.2.2 port 5001 <- 198.18.200.2 port 5002

A+P ranges

NA+P TCP&UDP 198.18.200.3 ports 10000-10099
HA+P TCP&UDP 198.18.200.3 ports 20000-20099
