# modprobe cn
# modprobe crypto_blkcipher
# modprobe nst

Simple export.
# ./dst -n export -d /dev/hdd -a 0.0.0.0 -p 1025 -s security.conf -R

Simple connect to the remote server.
# ./dst -n connect -a yafs-dev02 -p 1025 -R

Encrypted and hashed export.
# ./dst -n export -d /dev/hdd -a 0.0.0.0 -p 1025 -R -x "hmac(sha1)" -H hash_key -c "cbc(aes)" -C ./cipher_key  -s security.conf

Encrypted and hashed connect to the remote server.
# ./dst -n connect -a yafs-dev02 -p 1025 -R -x "hmac(sha1)" -H hash_key -c "cbc(aes)" -C ./cipher_key

More details.
# ./dst -h

Each export node has to have a security attribute file which contains per-client access permissions.
Export node will refuse to start if this file was not provided. You can set it up in a separate command
as long as any other attributes (address/port, crypto data).
Security attribute file has following format:
permission address

where 'permission' may be:
 1 - read-only access
 3 - rw access
0,2 - are not allowed

and 'address' field is a socket address (for example IPv4 address) of the client.