X-Git-Url: http://git.rot13.org/?a=blobdiff_plain;ds=sidebyside;f=userapps%2Fopensource%2Fipsec-tools%2Fsrc%2Fracoon%2Fsamples%2Froadwarrior%2Fclient%2Fracoon.conf;fp=userapps%2Fopensource%2Fipsec-tools%2Fsrc%2Fracoon%2Fsamples%2Froadwarrior%2Fclient%2Fracoon.conf;h=72ebca3d03135c781c59928ce232654fc71457fb;hb=59e02c1be2c9b373846b0789fbd5b7ef46f0927f;hp=0000000000000000000000000000000000000000;hpb=3f05a9da74f56df22d185b66ee663a6fd8053cb3;p=bcm963xx.git

diff --git a/userapps/opensource/ipsec-tools/src/racoon/samples/roadwarrior/client/racoon.conf b/userapps/opensource/ipsec-tools/src/racoon/samples/roadwarrior/client/racoon.conf
new file mode 100755
index 00000000..72ebca3d
--- /dev/null
+++ b/userapps/opensource/ipsec-tools/src/racoon/samples/roadwarrior/client/racoon.conf
@@ -0,0 +1,33 @@
+path certificate "/etc/openssl/certs";
+path pre_shared_key "/etc/racoon/psk.txt";
+
+listen {
+	adminsock "/var/racoon/racoon.sock" "root" "operator" 0660;
+}
+
+remote 192.0.2.50 {
+        exchange_mode aggressive;
+	ca_type x509 "root-ca.crt";
+        proposal_check obey;
+	nat_traversal on;
+	ike_frag on;
+	mode_cfg on;
+	script "/etc/racoon/phase1-up.sh" phase1_up;
+	script "/etc/racoon/phase1-down.sh" phase1_down;
+	passive off;
+        proposal {
+                encryption_algorithm 3des;
+                hash_algorithm sha1;
+                authentication_method hybrid_rsa_client;
+                dh_group 2;
+        }
+}
+
+
+sainfo anonymous {
+        pfs_group 2;
+        lifetime time 12 hour ;
+        encryption_algorithm 3des, cast128, blowfish 448;
+        authentication_algorithm hmac_sha1;
+        compression_algorithm deflate ;
+}