1 path certificate "/etc/openssl/certs";
2 path pre_shared_key "/etc/racoon/psk.txt";
5 adminsock "/var/racoon/racoon.sock" "root" "operator" 0660;
9 exchange_mode aggressive;
10 ca_type x509 "root-ca.crt";
15 script "/etc/racoon/phase1-up.sh" phase1_up;
16 script "/etc/racoon/phase1-down.sh" phase1_down;
19 encryption_algorithm 3des;
21 authentication_method hybrid_rsa_client;
29 lifetime time 12 hour ;
30 encryption_algorithm 3des, cast128, blowfish 448;
31 authentication_algorithm hmac_sha1;
32 compression_algorithm deflate ;