/[gentoo-x86]/net-firewall/ipsec-tools/files/ipsec.conf
Gentoo

Contents of /net-firewall/ipsec-tools/files/ipsec.conf

Parent Directory Parent Directory | Revision Log Revision Log


Revision 1.1 - (show annotations) (download)
Thu Mar 8 12:03:24 2012 UTC (2 years, 6 months ago) by blueness
Branch: MAIN
File MIME type: text/plain
Install simple configs so it racoon runs out of the box

(Portage version: 2.1.10.44/cvs/Linux x86_64)

1 #!/usr/sbin/setkey -f
2 #
3 # THIS IS A SAMPLE FILE!
4 #
5 # This is a sample file to test Gentoo's ipsec-tools out of the box.
6 # Do not use it in production. See: http://www.ipsec-howto.org/
7 #
8 flush;
9 spdflush;
10
11 #
12 # Uncomment the following if you want to do manual keying, ie, you want to run IPsec without racoon.
13 # Do not switch 192.168.3.21 <-> 192.168.3.25 on the peer
14 #
15 #add 192.168.3.25 192.168.3.21 ah 0x200 -A hmac-md5 0xc0291ff014dccdd03874d9e8e4cdf3e6;
16 #add 192.168.3.21 192.168.3.25 ah 0x300 -A hmac-md5 0x96358c90783bbfa3d7b196ceabe0536b;
17 #add 192.168.3.25 192.168.3.21 esp 0x201 -E 3des-cbc 0x7aeaca3f87d060a12f4a4487d5a5c3355920fae69a96c831;
18 #add 192.168.3.21 192.168.3.25 esp 0x301 -E 3des-cbc 0xf6ddb555acfd9d77b03ea3843f2653255afe8eb5573965df;
19
20 #
21 # Make sure to switch 192.168.3.21 <-> 192.168.3.25 on the peer
22 #
23 #spdadd 192.168.3.21 192.168.3.25 any -P out ipsec esp/transport//require ah/transport//require;
24 #spdadd 192.168.3.25 192.168.3.21 any -P in ipsec esp/transport//require ah/transport//require;
25 spdadd 192.168.3.25 192.168.3.21 any -P out ipsec esp/transport//require ah/transport//require;
26 spdadd 192.168.3.21 192.168.3.25 any -P in ipsec esp/transport//require ah/transport//require;

  ViewVC Help
Powered by ViewVC 1.1.20