Patrick Williams | b48b7b4 | 2016-08-17 15:04:38 -0500 | [diff] [blame] | 1 | # |
| 2 | # NOTE: This file will not be used if you use racoon-tool(8) to manage your |
| 3 | # IPsec connections. racoon-tool will process racoon-tool.conf(5) and |
| 4 | # generate a configuration (/var/lib/racoon/racoon.conf) and use it, instead |
| 5 | # of this file. |
| 6 | # |
| 7 | # Simple racoon.conf |
| 8 | # |
| 9 | # |
| 10 | # Please look in /usr/share/doc/racoon/examples for |
| 11 | # examples that come with the source. |
| 12 | # |
| 13 | # Please read racoon.conf(5) for details, and alsoread setkey(8). |
| 14 | # |
| 15 | # |
| 16 | # Also read the Linux IPSEC Howto up at |
| 17 | # http://www.ipsec-howto.org/t1.html |
| 18 | # |
| 19 | log notify; |
| 20 | path pre_shared_key "/etc/racoon/psk.txt"; |
| 21 | path certificate "/etc/racoon/certs"; |
| 22 | |
| 23 | #remote 172.31.1.1 { |
| 24 | # exchange_mode main,aggressive; |
| 25 | # proposal { |
| 26 | # encryption_algorithm 3des; |
| 27 | # hash_algorithm sha1; |
| 28 | # authentication_method pre_shared_key; |
| 29 | # dh_group modp1024; |
| 30 | # } |
| 31 | # generate_policy off; |
| 32 | #} |
| 33 | # |
| 34 | #sainfo address 192.168.203.10[any] any address 192.168.22.0/24[any] any { |
| 35 | # pfs_group modp768; |
| 36 | # encryption_algorithm 3des; |
| 37 | # authentication_algorithm hmac_md5; |
| 38 | # compression_algorithm deflate; |
| 39 | #} |
| 40 | |