.\" $NetBSD: racoon.conf.5,v 1.34.4.3 2007/09/03 18:07:29 mgrooms Exp $
|
.\"
|
.\" Id: racoon.conf.5,v 1.54 2006/08/22 18:17:17 manubsd Exp
|
.\"
|
.\" Copyright (C) 1995, 1996, 1997, and 1998 WIDE Project.
|
.\" All rights reserved.
|
.\"
|
.\" Redistribution and use in source and binary forms, with or without
|
.\" modification, are permitted provided that the following conditions
|
.\" are met:
|
.\" 1. Redistributions of source code must retain the above copyright
|
.\" notice, this list of conditions and the following disclaimer.
|
.\" 2. Redistributions in binary form must reproduce the above copyright
|
.\" notice, this list of conditions and the following disclaimer in the
|
.\" documentation and/or other materials provided with the distribution.
|
.\" 3. Neither the name of the project nor the names of its contributors
|
.\" may be used to endorse or promote products derived from this software
|
.\" without specific prior written permission.
|
.\"
|
.\" THIS SOFTWARE IS PROVIDED BY THE PROJECT AND CONTRIBUTORS ``AS IS'' AND
|
.\" ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
|
.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
|
.\" ARE DISCLAIMED. IN NO EVENT SHALL THE PROJECT OR CONTRIBUTORS BE LIABLE
|
.\" FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
|
.\" DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
|
.\" OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
|
.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
|
.\" LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
|
.\" OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
|
.\" SUCH DAMAGE.
|
.\"
|
.Dd September 19, 2006
|
.Dt RACOON.CONF 5
|
.Os
|
.\"
|
.Sh NAME
|
.Nm racoon.conf
|
.Nd configuration file for racoon
|
.\"
|
.\" .Sh SYNOPSIS
|
.\"
|
.Sh DESCRIPTION
|
.Nm
|
is the configuration file for the
|
.Xr racoon 8
|
ISAKMP daemon.
|
.Xr racoon 8
|
negotiates security associations for itself (ISAKMP SA, or phase 1 SA)
|
and for kernel IPsec (IPsec SA, or phase 2 SA).
|
The file consists of a sequence of directives and statements.
|
Each directive is composed by a tag and statements, enclosed by
|
.Ql {
|
and
|
.Ql } .
|
Lines beginning with
|
.Ql #
|
are comments.
|
.\"
|
.Ss Meta Syntax
|
Keywords and special characters that the parser expects exactly are
|
displayed using
|
.Ic this
|
font.
|
Parameters are specified with
|
.Ar this
|
font.
|
Square brackets
|
.Po
|
.Ql \&[
|
and
|
.Ql \&]
|
.Pc
|
are used to show optional keywords and parameters.
|
Note that
|
you have to pay attention when this manual is describing
|
.Ar port
|
numbers.
|
The
|
.Ar port
|
number is always enclosed by
|
.Ql \&[
|
and
|
.Ql \&] .
|
In this case, the port number is not an optional keyword.
|
If it is possible to omit the
|
.Ar port
|
number,
|
the expression becomes
|
.Bq Bq Ar port .
|
The vertical bar
|
.Pq Ql \&|
|
is used to indicate
|
a choice between optional parameters.
|
Parentheses
|
.Po
|
.Ql \&(
|
and
|
.Ql \&)
|
.Pc
|
are used to group keywords and parameters when necessary.
|
Major parameters are listed below.
|
.Pp
|
.Bl -tag -width addressx -compact
|
.It Ar number
|
means a hexadecimal or a decimal number.
|
The former must be prefixed with
|
.Ql Li 0x .
|
.It Ar string
|
.It Ar path
|
.It Ar file
|
means any string enclosed in
|
.Ql \&"
|
.Pq double quotes .
|
.It Ar address
|
means IPv6 and/or IPv4 address.
|
.It Ar port
|
means a TCP/UDP port number.
|
The port number is always enclosed by
|
.Ql \&[
|
and
|
.Ql \&] .
|
.It Ar timeunit
|
is one of following:
|
.Ic sec , secs , second , seconds ,
|
.Ic min , mins , minute , minutes ,
|
.Ic hour , hours .
|
.El
|
.\"
|
.Ss Privilege separation
|
.Bl -tag -width Ds -compact
|
.It Ic privsep { Ar statements Ic }
|
Specifies privilege separation parameters.
|
When enabled, these enable
|
.Xr racoon 8
|
to operate with an unprivileged instance doing most of the work, while
|
a privileged instance takes care of performing the following operations
|
as root: reading PSK and private keys, launching hook scripts, and
|
validating passwords against system databases or against PAM.
|
Please note that using privilege separation makes changes to the
|
.Ar listen
|
and
|
.Ar paths
|
sections ignored upon configuration reloads.
|
A
|
.Xr racoon 8
|
restart is required if you want such changes to be taken into account.
|
.Pp
|
.Bl -tag -width Ds -compact
|
.It Ic user Ar user ;
|
The user to which the unprivileged instance of
|
.Xr racoon 8 ,
|
should switch.
|
This can be a quoted user name or a numeric UID.
|
.It Ic group Ar group ;
|
The group the unprivilegied instance of
|
.Xr racoon 8 ,
|
should switch.
|
This can be a quoted group name or a numeric GID.
|
.It Ic chroot Ar path ;
|
A directory to which the unprivileged instance of
|
.Xr racoon 8
|
should
|
.Xr chroot 2 .
|
This directory should hold a tree where the following files must be
|
reachable:
|
.Bl -tag -width Ds -compact
|
.It Pa /dev/random
|
.It Pa /dev/urandom
|
.It The certificates
|
.It The file containing the Xauth banner
|
.El
|
.Pp
|
The PSK file, the private keys, and the hook scripts are accessed through the
|
privileged instance of
|
.Xr racoon 8
|
and do not need to be reachable in the
|
.Xr chroot 2 Ap ed
|
tree.
|
.El
|
.El
|
.Ss Path Specification
|
This section specifies various paths used by racoon.
|
When running in privilege separation mode,
|
.Ic certificate
|
and
|
.Ic script
|
paths are mandatory. A
|
.Xr racoon 8
|
restart is required if you want path changes to be taken into account.
|
.Bl -tag -width Ds -compact
|
.It Ic path include Ar path ;
|
Specifies a path to include a file.
|
See
|
.Sx File Inclusion .
|
.It Ic path pre_shared_key Ar file ;
|
Specifies a file containing pre-shared key(s) for various ID(s).
|
See
|
.Sx Pre-shared key File .
|
.It Ic path certificate Ar path ;
|
.Xr racoon 8
|
will search this directory if a certificate or certificate request is received.
|
If you run with privilege separation,
|
.Xr racoon 8
|
will refuse to use a certificate stored outside of this directory.
|
.It Ic path backupsa Ar file ;
|
Specifies a file to which SA information negotiated by
|
racoon should be stored.
|
.Xr racoon 8
|
will install SA(s) from the file when started with the
|
.Fl B
|
flag.
|
The file is growing because
|
.Xr racoon 8
|
simply adds SAs to it.
|
You should maintain the file manually.
|
.It Ic path script Ar path ;
|
.Xr racoon 8
|
will search this directory for scripts hooks.
|
If you run with privilege separation,
|
.Xr racoon 8
|
will refuse to execute a script stored outside of this directory.
|
.It Ic path pidfile Ar file ;
|
Specifies file where to store PID of process.
|
If path starts with
|
.Pa /
|
it is treated as an absolute path. Otherwise, it is treated as a relative
|
path to the VARRUN directory specified at compilation time.
|
Default is
|
.Pa racoon.pid .
|
.El
|
.\"
|
.Ss File Inclusion
|
.Bl -tag -width Ds -compact
|
.It Ic include Ar file
|
Specifies other configuration files to be included.
|
.El
|
.\"
|
.Ss Identifier Specification
|
is obsolete.
|
It must be defined at each
|
.Ic remote
|
directive.
|
.\"
|
.Ss Timer Specification
|
.Bl -tag -width Ds -compact
|
.It Ic timer { Ar statements Ic }
|
This section specifies various timer values used by racoon.
|
.Pp
|
.Bl -tag -width Ds -compact
|
.It Ic counter Ar number ;
|
The maximum number of retries to send.
|
The default is 5.
|
.It Ic interval Ar number Ar timeunit ;
|
The interval to resend, in seconds.
|
The default time is 10 seconds.
|
.It Ic persend Ar number ;
|
The number of packets per send.
|
The default is 1.
|
.It Ic phase1 Ar number Ar timeunit ;
|
The maximum time it should take to complete phase 1.
|
The default time is 15 seconds.
|
.It Ic phase2 Ar number Ar timeunit ;
|
The maximum time it should take to complete phase 2.
|
The default time is 10 seconds.
|
.It Ic natt_keepalive Ar number Ar timeunit ;
|
The interval between sending NAT-Traversal keep-alive packets.
|
The default time is 20 seconds.
|
Set to 0s to disable keep-alive packets.
|
.El
|
.El
|
.\"
|
.Ss Listening Port Specification
|
.Bl -tag -width Ds -compact
|
.It Ic listen { Ar statements Ic }
|
If no
|
.Ar listen
|
directive is specified,
|
.Xr racoon 8
|
will listen on all available interface addresses.
|
The following is the list of valid statements:
|
.Pp
|
.Bl -tag -width Ds -compact
|
.\" How do I express bold brackets; `[' and `]' .
|
.\" Answer: For bold brackets, do "Ic \&[ foo \&]".
|
.\" Is the "Bq Ic [ Ar port ] ;" buggy ?
|
.It Ic isakmp Ar address Bq Bq Ar port ;
|
If this is specified,
|
.Xr racoon 8
|
will only listen on the defined
|
.Ar address .
|
The default port is 500, which is specified by IANA.
|
You can provide more than one address definition.
|
.It Ic isakmp_natt Ar address Bq Ar port ;
|
Same as
|
.Ic isakmp
|
but also sets the socket options to accept UDP-encapsulated ESP traffic for
|
NAT-Traversal.
|
If you plan to use NAT-T, you should provide at least one address
|
with port 4500, which is specified by IANA.
|
There is no default.
|
.It Ic strict_address ;
|
Requires that all addresses for ISAKMP be bound.
|
This statement will be ignored if you do not specify address definitions.
|
.El
|
When running in privilege separation mode, you need to restart
|
.Xr racoon 8
|
to have changes to the
|
.Ar listen
|
section taken into account.
|
.Pp
|
The
|
.Ar listen
|
section can also be used to specify the admin socket mode and ownership
|
if racoon was built with support for admin port.
|
.Bl -tag -width Ds -compact
|
.It Ic adminsock Ar path Op Ar owner\ group\ mode ;
|
The
|
.Ar path ,
|
.Ar owner ,
|
and
|
.Ar group
|
values specify the socket path, owner, and group. They must be quoted.
|
The defaults are
|
.Pa /var/racoon/racoon.sock ,
|
UID 0, and GID 0.
|
.Ar mode
|
is the access mode in octal. The default is 0600.
|
.It Ic adminsock disabled ;
|
This directive tells racoon to not listen on the admin socket.
|
.El
|
.El
|
.\"
|
.Ss Miscellaneous Global Parameters
|
.Bl -tag -width Ds -compact
|
.It Ic gss_id_enc Ar enctype ;
|
Older versions of
|
.Xr racoon 8
|
used ISO-Latin-1 as the encoding of the GSS-API identifier attribute.
|
For interoperability with Microsoft Windows' GSS-API authentication
|
scheme, the default encoding has been changed to UTF-16LE.
|
The
|
.Ic gss_id_enc
|
parameter allows
|
.Xr racoon 8
|
to be configured to use the old encoding for compatibility with existing
|
.Xr racoon 8
|
installations.
|
The following are valid values for
|
.Ar enctype :
|
.Pp
|
.Bl -tag -width Ds -compact
|
.It Ic utf-16le
|
Use UTF-16LE to encode the GSS-API identifier attribute.
|
This is the default encoding.
|
This encoding is compatible with Microsoft Windows.
|
.It Ic latin1
|
Use ISO-Latin-1 to encode the GSS-API identifier attribute.
|
This is the encoding used by older versions of
|
.Xr racoon 8 .
|
.El
|
.El
|
.\"
|
.Ss Remote Nodes Specifications
|
.Bl -tag -width Ds -compact
|
.It Xo
|
.Ic remote ( Ar address | Ic anonymous )
|
.Bq Bq Ar port
|
.Bq Ic inherit Ar parent
|
.Ic { Ar statements Ic }
|
.Xc
|
Specifies the IKE phase 1 parameters for each remote node.
|
The default port is 500.
|
If
|
.Ic anonymous
|
is specified, the statements will apply to any peer that does not match a
|
more specific
|
.Ic remote
|
directive.
|
.Pp
|
Sections with
|
.Ic inherit Ar parent
|
statements (where
|
.Ar parent
|
is either
|
.Ar address
|
or a keyword
|
.Ic anonymous )
|
that have all values predefined to those of a given
|
.Ar parent .
|
In these sections it is enough to redefine only the changed parameters.
|
.Pp
|
The following are valid statements.
|
.Pp
|
.Bl -tag -width Ds -compact
|
.\"
|
.It Ic exchange_mode ( main | aggressive | base ) ;
|
Defines the exchange mode for phase 1 when racoon is the initiator.
|
It also means the acceptable exchange mode when racoon is the responder.
|
More than one mode can be specified by separating them with a comma.
|
All of the modes are acceptable.
|
The first exchange mode is what racoon uses when it is the initiator.
|
.\"
|
.It Ic doi Ic ipsec_doi ;
|
Means to use IPsec DOI as specified in RFC 2407.
|
You can omit this statement.
|
.\"
|
.It Ic situation Ic identity_only ;
|
Means to use SIT_IDENTITY_ONLY as specified in RFC 2407.
|
You can omit this statement.
|
.\"
|
.It Ic identifier Ar idtype ;
|
This statment is obsolete. Instead, use
|
.Ic my_identifier .
|
.\"
|
.It Xo
|
.Ic my_identifier Bq Ar qualifier
|
.Ar idtype ... ;
|
.Xc
|
Specifies the identifier sent to the remote host
|
and the type to use in the phase 1 negotiation.
|
.Ic address, fqdn , user_fqdn , keyid ,
|
and
|
.Ic asn1dn
|
can be used as an
|
.Ar idtype .
|
The
|
.Ar qualifier
|
is currently only used for
|
.Ic keyid ,
|
and can be either
|
.Ic file
|
or
|
.Ic tag .
|
The possible values are :
|
.Bl -tag -width Ds -compact
|
.It Ic my_identifier Ic address Bq Ar address ;
|
The type is the IP address.
|
This is the default type if you do not specify an identifier to use.
|
.It Ic my_identifier Ic user_fqdn Ar string ;
|
The type is a USER_FQDN (user fully-qualified domain name).
|
.It Ic my_identifier Ic fqdn Ar string ;
|
The type is a FQDN (fully-qualified domain name).
|
.It Xo
|
.Ic my_identifier Ic keyid Bq Ic file
|
.Ar file ;
|
.Xc
|
The type is a KEY_ID, read from the file.
|
.It Ic my_identifier Ic keyid Ic tag Ar string ;
|
The type is a KEY_ID, specified in the quoted string.
|
.It Ic my_identifier Ic asn1dn Bq Ar string ;
|
The type is an ASN.1 distinguished name.
|
If
|
.Ar string
|
is omitted,
|
.Xr racoon 8
|
will get the DN from the Subject field in the certificate.
|
.El
|
.\"
|
.It Ic xauth_login Bq Ar string ;
|
Specifies the login to use in client-side Hybrid authentication.
|
It is available only if
|
.Xr racoon 8
|
has been built with this option.
|
The associated password is looked up in the pre-shared key files,
|
using the login
|
.Ic string
|
as the key id.
|
.\"
|
.It Ic peers_identifier Ar idtype ... ;
|
Specifies the peer's identifier to be received.
|
If it is not defined then
|
.Xr racoon 8
|
will not verify the peer's identifier in ID payload transmitted from the peer.
|
If it is defined, the behavior of the verification depends on the flag of
|
.Ic verify_identifier .
|
The usage of
|
.Ar idtype
|
is the same as
|
.Ic my_identifier
|
except that the individual component values of an
|
.Ic asn1dn
|
identifier may specified as
|
.Ic *
|
to match any value (e.g. "C=XX, O=MyOrg, OU=*, CN=Mine").
|
Alternative acceptable peer identifiers may be specified by repeating the
|
.Ic peers_identifier
|
statement.
|
.\"
|
.It Ic verify_identifier (on | off) ;
|
If you want to verify the peer's identifier,
|
set this to on.
|
In this case, if the value defined by
|
.Ic peers_identifier
|
is not the same as the peer's identifier in the ID payload,
|
the negotiation will fail.
|
The default is off.
|
.\"
|
.It Ic certificate_type Ar certspec ;
|
Specifies a certificate specification.
|
.Ar certspec
|
is one of followings:
|
.Bl -tag -width Ds -compact
|
.It Ic x509 Ar certfile Ar privkeyfile ;
|
.Ar certfile
|
means a file name of a certificate.
|
.Ar privkeyfile
|
means a file name of a secret key.
|
.El
|
.Bl -tag -width Ds -compact
|
.It Ic plain_rsa Ar privkeyfile ;
|
.Ar privkeyfile
|
means a file name of a private key generated by plainrsa-gen(8). Required
|
for RSA authentication.
|
.El
|
.It Ic ca_type Ar cacertspec ;
|
Specifies a root certificate authority specification.
|
.Ar cacertspec
|
is one of followings:
|
.Bl -tag -width Ds -compact
|
.It Ic x509 Ar cacertfile ;
|
.Ar cacertfile
|
means a file name of the root certificate authority.
|
Default is
|
.Pa /etc/openssl/cert.pem
|
.El
|
.\"
|
.It Ic mode_cfg (on | off) ;
|
Gather network information through ISAKMP mode configuration.
|
Default is off.
|
.\"
|
.It Ic weak_phase1_check (on | off) ;
|
Tells racoon to act on unencrypted deletion messages during phase 1.
|
This is a small security risk, so the default is off, meaning that
|
racoon will keep on trying to establish a connection even if the
|
user credentials are wrong, for instance.
|
.\"
|
.It Ic peers_certfile ( dnssec | Ar certfile | Ic plain_rsa Ar pubkeyfile ) ;
|
If
|
.Ic dnssec
|
is defined,
|
.Xr racoon 8
|
will ignore the CERT payload from the peer,
|
and try to get the peer's certificate from DNS instead.
|
If
|
.Ar certfile
|
is defined,
|
.Xr racoon 8
|
will ignore the CERT payload from the peer,
|
and will use this certificate as the peer's certificate.
|
If
|
.Ic plain_rsa
|
is defined,
|
.Xr racoon 8
|
will expect
|
.Ar pubkeyfile
|
to be the peer's public key that was generated
|
by plainrsa-gen(8).
|
.\"
|
.It Ic script Ar script Ic phase1_up
|
.It Ic script Ar script Ic phase1_down
|
Shell scripts that get executed when a phase 1 SA goes up or down.
|
Both scripts get either
|
.Ic phase1_up
|
or
|
.Ic phase1_down
|
as first argument, and the following
|
variables are set in their environment:
|
.Bl -tag -width Ds -compact
|
.It Ev LOCAL_ADDR
|
The local address of the phase 1 SA.
|
.It Ev LOCAL_PORT
|
The local port used for IKE for the phase 1 SA.
|
.It Ev REMOTE_ADDR
|
The remote address of the phase 1 SA.
|
.It Ev REMOTE_PORT
|
The remote port used for IKE for the phase 1 SA.
|
.El
|
The following variables are only set if
|
.Ic mode_cfg
|
was enabled:
|
.Bl -tag -width Ds -compact
|
.It INTERNAL_ADDR4
|
An IPv4 internal address obtained by ISAKMP mode config.
|
.It INTERNAL_NETMASK4
|
An IPv4 internal netmask obtained by ISAKMP mode config.
|
.It INTERNAL_CIDR4
|
An IPv4 internal netmask obtained by ISAKMP mode config, in CIDR notation.
|
.It INTERNAL_DNS4
|
The first internal DNS server IPv4 address obtained by ISAKMP mode config.
|
.It INTERNAL_DNS4_LIST
|
A list of internal DNS servers IPv4 address obtained by ISAKMP mode config,
|
separated by spaces.
|
.It INTERNAL_WINS4
|
The first internal WINS server IPv4 address obtained by ISAKMP mode config.
|
.It INTERNAL_WINS4_LIST
|
A list of internal WINS servers IPv4 address obtained by ISAKMP mode config,
|
separated by spaces.
|
.It SPLIT_INCLUDE
|
The space separated list of IPv4 addresses and masks (address slash mask)
|
that define the networks to be encrypted (as opposed to the default where
|
all the traffic should be encrypted) ; obtained by ISAKMP mode config ;
|
SPLIT_INCLUDE and SPLIT_LOCAL are mutually exclusive.
|
.It SPLIT_LOCAL
|
The space separated list of IPv4 addresses and masks (address slash mask)
|
that define the networks to be considered local, and thus excluded from the
|
tunnels ; obtained by ISAKMP mode config.
|
.It DEFAULT_DOMAIN
|
The DNS default domain name obtained by ISAKMP mode config.
|
.El
|
.\"
|
.\"
|
.It Ic send_cert (on | off) ;
|
If you do not want to send a certificate, set this to off.
|
The default is on.
|
.\"
|
.It Ic send_cr (on | off) ;
|
If you do not want to send a certificate request, set this to off.
|
The default is on.
|
.\"
|
.It Ic verify_cert (on | off) ;
|
By default, the identifier sent by the remote host (as specified in its
|
.Ic my_identifier
|
statement) is compared with the credentials in the certificate
|
used to authenticate the remote host as follows:
|
.Bl -tag -width Ds -compact
|
.It Type Ic asn1dn:
|
The entire certificate subject name is compared with the identifier,
|
e.g. "C=XX, O=YY, ...".
|
.It Type Ic address, fqdn, or user_fqdn:
|
The certificate's subjectAltName is compared with the identifier.
|
.El
|
If the two do not match the negotiation will fail.
|
If you do not want to verify the identifier using the peer's certificate,
|
set this to off.
|
.\"
|
.It Ic lifetime time Ar number Ar timeunit ;
|
Define a lifetime of a certain time
|
which will be proposed in the phase 1 negotiations.
|
Any proposal will be accepted, and the attribute(s) will not be proposed to
|
the peer if you do not specify it (them).
|
They can be individually specified in each proposal.
|
.\"
|
.It Ic ike_frag (on | off | force) ;
|
Enable receiver-side IKE fragmentation if
|
.Xr racoon 8
|
has been built with this feature.
|
If set to on, racoon will advertise
|
itself as being capable of receiving packets split by IKE fragmentation.
|
This extension is there to work around broken firewalls that do not
|
work with fragmented UDP packets.
|
IKE fragmentation is always enabled on the sender-side, and it is
|
used if the peer advertises itself as IKE fragmentation capable.
|
By selecting force, IKE Fragmentation will
|
be used when racoon is acting as the initiator even before the remote
|
peer has advertised itself as IKE fragmentation capable.
|
.\"
|
.It Ic esp_frag Ar fraglen ;
|
This option is only relevant if you use NAT traversal in tunnel mode.
|
Its purpose is to work around broken DSL routers that reject UDP
|
fragments, by fragmenting the IP packets before ESP encapsulation.
|
The result is ESP over UDP of fragmented packets instead of fragmented
|
ESP over UDP packets (i.e., IP:UDP:ESP:frag(IP) instead of
|
frag(IP:UDP:ESP:IP)).
|
.Ar fraglen
|
is the maximum size of the fragments.
|
552 should work anywhere,
|
but the higher
|
.Ar fraglen
|
is, the better the performance.
|
.Pp
|
Note that because PMTU discovery is broken on many sites, you will
|
have to use MSS clamping if you want TCP to work correctly.
|
.\"
|
.It Ic initial_contact (on | off) ;
|
Enable this to send an INITIAL-CONTACT message.
|
The default value is
|
.Ic on .
|
This message is useful only when the responder implementation chooses an
|
old SA when there are multiple SAs with different established time and the
|
initiator reboots.
|
If racoon did not send the message,
|
the responder would use an old SA even when a new SA was established.
|
For systems that use a KAME derived IPSEC stack, the
|
.Xr sysctl 8
|
variable net.key.preferred_oldsa can be used to control this preference.
|
When the value is zero, the stack always uses a new SA.
|
.\"
|
.It Ic passive (on | off) ;
|
If you do not want to initiate the negotiation, set this to on.
|
The default value is
|
.Ic off .
|
It is useful for a server.
|
.\"
|
.It Ic proposal_check Ar level ;
|
Specifies the action of lifetime length, key length and PFS of the phase 2
|
selection on the responder side, and the action of lifetime check in
|
phase 1.
|
The default level is
|
.Ic strict .
|
If the
|
.Ar level
|
is:
|
.Bl -tag -width Ds -compact
|
.It Ic obey
|
The responder will obey the initiator anytime.
|
.It Ic strict
|
If the responder's lifetime length is longer than the initiator's or
|
the responder's key length is shorter than the initiator's,
|
the responder will use the initiator's value.
|
Otherwise, the proposal will be rejected.
|
If PFS is not required by the responder, the responder will obey the proposal.
|
If PFS is required by both sides and the responder's group is not equal to
|
the initiator's, then the responder will reject the proposal.
|
.It Ic claim
|
If the responder's lifetime length is longer than the initiator's or
|
the responder's key length is shorter than the initiator's,
|
the responder will use the initiator's value.
|
If the responder's lifetime length is shorter than the initiator's,
|
the responder uses its own length AND sends a RESPONDER-LIFETIME notify
|
message to an initiator in the case of lifetime (phase 2 only).
|
For PFS, this directive behaves the same as
|
.Ic strict .
|
.It Ic exact
|
If the initiator's lifetime or key length is not equal to the responder's,
|
the responder will reject the proposal.
|
If PFS is required by both sides and the responder's group is not equal to
|
the initiator's, then the responder will reject the proposal.
|
.El
|
.\"
|
.It Ic support_proxy (on | off) ;
|
If this value is set to on, then both values of ID payloads in the
|
phase 2 exchange are always used as the addresses of end-point of
|
IPsec-SAs.
|
The default is off.
|
.\"
|
.It Ic generate_policy (on | off | require | unique) ;
|
This directive is for the responder.
|
Therefore you should set
|
.Ic passive
|
to on in order that
|
.Xr racoon 8
|
only becomes a responder.
|
If the responder does not have any policy in SPD during phase 2
|
negotiation, and the directive is set to on, then
|
.Xr racoon 8
|
will choose the first proposal in the
|
SA payload from the initiator, and generate policy entries from the proposal.
|
It is useful to negotiate with clients whose IP address is allocated
|
dynamically.
|
Note that an inappropriate policy might be installed into the responder's SPD
|
by the initiator,
|
so other communications might fail if such policies are installed
|
due to a policy mismatch between the initiator and the responder.
|
.Ic on
|
and
|
.Ic require
|
values mean the same thing (generate a require policy).
|
.Ic unique
|
tells racoon to set up unique policies, with a monotoning increasing
|
reqid number (between 1 and IPSEC_MANUAL_REQID_MAX).
|
This directive is ignored in the initiator case.
|
The default value is
|
.Ic off .
|
.\"
|
.\"
|
.It Ic nat_traversal (on | off | force) ;
|
This directive enables use of the NAT-Traversal IPsec extension
|
(NAT-T).
|
NAT-T allows one or both peers to reside behind a NAT gateway (i.e.,
|
doing address- or port-translation).
|
If a NAT gateway is detected during the phase 1 handshake, racoon will
|
attempt to negotiate the use of NAT-T with the remote peer.
|
If the negotiation succeeds, all ESP and AH packets for the given connection
|
will be encapsulated into UDP datagrams (port 4500, by default).
|
Possible values are:
|
.Bl -tag -width Ds -compact
|
.It Ic on
|
NAT-T is used when a NAT gateway is detected between the peers.
|
.It Ic off
|
NAT-T is not proposed/accepted.
|
This is the default.
|
.It Ic force
|
NAT-T is used regardless of whether a NAT gateway is detected between the
|
peers or not.
|
.El
|
Please note that NAT-T support is a compile-time option.
|
Although it is enabled in the source distribution by default, it
|
may not be available in your particular build.
|
In that case you will get a
|
warning when using any NAT-T related config options.
|
.\"
|
.It Ic dpd_delay Ar delay ;
|
This option activates the DPD and sets the time (in seconds) allowed
|
between 2 proof of liveliness requests.
|
The default value is
|
.Ic 0 ,
|
which disables DPD monitoring, but still negotiates DPD support.
|
.\"
|
.It Ic dpd_retry Ar delay ;
|
If
|
.Ic dpd_delay
|
is set, this sets the delay (in seconds) to wait for a proof of
|
liveliness before considering it as failed and send another request.
|
The default value is
|
.Ic 5 .
|
.\"
|
.It Ic dpd_maxfail Ar number ;
|
If
|
.Ic dpd_delay
|
is set, this sets the maximum number of liveliness proofs to request
|
(without reply) before considering the peer is dead.
|
The default value is
|
.Ic 5 .
|
.\"
|
.It Ic nonce_size Ar number ;
|
define the byte size of nonce value.
|
Racoon can send any value although
|
RFC2409 specifies that the value MUST be between 8 and 256 bytes.
|
The default size is 16 bytes.
|
.\"
|
.It Ic ph1id Ar number ;
|
An optionnal number to identify the remote proposal and to link it
|
only with sainfos who have the same number.
|
Defaults to 0.
|
.\"
|
.It Xo
|
.Ic proposal { Ar sub-substatements Ic }
|
.Xc
|
.Bl -tag -width Ds -compact
|
.\"
|
.It Ic encryption_algorithm Ar algorithm ;
|
Specifies the encryption algorithm used for the phase 1 negotiation.
|
This directive must be defined.
|
.Ar algorithm
|
is one of following:
|
.Ic des, 3des, blowfish, cast128, aes, camellia
|
.\".Ic rc5 , idea
|
for Oakley.
|
For other transforms, this statement should not be used.
|
.\"
|
.It Ic hash_algorithm Ar algorithm ;
|
Defines the hash algorithm used for the phase 1 negotiation.
|
This directive must be defined.
|
.Ar algorithm
|
is one of following:
|
.Ic md5, sha1, sha256, sha384, sha512
|
for Oakley.
|
.\"
|
.It Ic authentication_method Ar type ;
|
Defines the authentication method used for the phase 1 negotiation.
|
This directive must be defined.
|
.Ar type
|
is one of:
|
.Ic pre_shared_key , rsasig
|
(for plain RSA authentication),
|
.Ic gssapi_krb , hybrid_rsa_server ,
|
.Ic hybrid_rsa_client , xauth_rsa_server , xauth_rsa_client , xauth_psk_server
|
or
|
.Ic xauth_psk_client .
|
.\"
|
.It Ic dh_group Ar group ;
|
Defines the group used for the Diffie-Hellman exponentiations.
|
This directive must be defined.
|
.Ar group
|
is one of following:
|
.Ic modp768 , modp1024 , modp1536 ,
|
.Ic modp2048 , modp3072 , modp4096 ,
|
.Ic modp6144 , modp8192 .
|
Or you can define 1, 2, 5, 14, 15, 16, 17, or 18 as the DH group number.
|
When you want to use aggressive mode,
|
you must define the same DH group in each proposal.
|
.It Ic lifetime time Ar number Ar timeunit ;
|
Defines the lifetime of the phase 1 SA proposal.
|
Refer to the description of the
|
.Ic lifetime
|
directive defined in the
|
.Ic remote
|
directive.
|
.It Ic gss_id Ar string ;
|
Defines the GSS-API endpoint name, to be included as an attribute in the SA,
|
if the
|
.Ic gssapi_krb
|
authentication method is used.
|
If this is not defined, the default value of
|
.Ql host/hostname
|
is used, where hostname is the value returned by the
|
.Xr hostname 1
|
command.
|
.El
|
.El
|
.El
|
.\"
|
.Ss Policy Specifications
|
The policy directive is obsolete, policies are now in the SPD.
|
.Xr racoon 8
|
will obey the policy configured into the kernel by
|
.Xr setkey 8 ,
|
and will construct phase 2 proposals by combining
|
.Ic sainfo
|
specifications in
|
.Nm ,
|
and policies in the kernel.
|
.\"
|
.Ss Sainfo Specifications
|
.Bl -tag -width Ds -compact
|
.It Xo
|
.Ic sainfo ( Ar source_id destination_id | Ar source_id Ic anonymous | Ic anonymous Ar destination_id | Ic anonymous ) [ from Ar idtype [ Ar string ] ] [ Ic group Ar string ]
|
.Ic { Ar statements Ic }
|
.Xc
|
defines the parameters of the IKE phase 2 (IPsec-SA establishment).
|
.Ar source_id
|
and
|
.Ar destination_id
|
are constructed like:
|
.Pp
|
.Ic address Ar address
|
.Bq Ic / Ar prefix
|
.Bq Ic [ Ar port ]
|
.Ar ul_proto
|
.Pp
|
or
|
.Pp
|
.Ic subnet Ar address
|
.Bq Ic / Ar prefix
|
.Bq Ic [ Ar port ]
|
.Ar ul_proto
|
.Pp
|
or
|
.Pp
|
.Ar idtype Ar string
|
.Pp
|
An id string should be expressed to match the exact value of an ID payload
|
(source is the local end, destination is the remote end).
|
This is not like a filter rule.
|
For example, if you define 3ffe:501:4819::/48 as
|
.Ar source_id .
|
3ffe:501:4819:1000:/64 will not match.
|
.Pp
|
In the case of a longest prefix (selecting a single host),
|
.Ar address
|
instructs to send ID type of ADDRESS while
|
.Ar subnet
|
instructs to send ID type of SUBNET.
|
Otherwise, these instructions are identical.
|
.Pp
|
The group keyword allows an XAuth group membership check to be performed
|
for this sainfo section.
|
When the mode_cfg auth source is set to
|
.Ic system
|
or
|
.Ic ldap ,
|
the XAuth user is verified to be a member of the specified group
|
before allowing a matching SA to be negotiated.
|
.Pp
|
.Bl -tag -width Ds -compact
|
.\"
|
.It Ic pfs_group Ar group ;
|
define the group of Diffie-Hellman exponentiations.
|
If you do not require PFS then you can omit this directive.
|
Any proposal will be accepted if you do not specify one.
|
.Ar group
|
is one of following:
|
.Ic modp768 , modp1024 , modp1536 ,
|
.Ic modp2048 , modp3072 , modp4096 ,
|
.Ic modp6144 , modp8192 .
|
Or you can define 1, 2, 5, 14, 15, 16, 17, or 18 as the DH group number.
|
.\"
|
.It Ic lifetime time Ar number Ar timeunit ;
|
define how long an IPsec-SA will be used, in timeunits.
|
Any proposal will be accepted, and no attribute(s) will be proposed to
|
the peer if you do not specify it(them).
|
See the
|
.Ic proposal_check
|
directive.
|
.\"
|
.It Ic remoteid Ar number ;
|
Sainfos will only be used if their remoteid matches the ph1id of the
|
remote section used for phase 1.
|
Defaults to 0, which is also the default for ph1id.
|
.\"
|
.It Ic my_identifier Ar idtype ... ;
|
is obsolete.
|
It does not make sense to specify an identifier in the phase 2.
|
.El
|
.\"
|
.Pp
|
.Xr racoon 8
|
does not have a list of security protocols to be negotiated.
|
The list of security protocols are passed by SPD in the kernel.
|
Therefore you have to define all of the potential algorithms
|
in the phase 2 proposals even if there are algorithms which will not be used.
|
These algorithms are define by using the following three directives,
|
with a single comma as the separator.
|
For algorithms that can take variable-length keys, algorithm names
|
can be followed by a key length, like
|
.Dq Li blowfish 448 .
|
.Xr racoon 8
|
will compute the actual phase 2 proposals by computing
|
the permutation of the specified algorithms,
|
and then combining them with the security protocol specified by the SPD.
|
For example, if
|
.Ic des , 3des , hmac_md5 ,
|
and
|
.Ic hmac_sha1
|
are specified as algorithms, we have four combinations for use with ESP,
|
and two for AH.
|
Then, based on the SPD settings,
|
.Xr racoon 8
|
will construct the actual proposals.
|
If the SPD entry asks for ESP only, there will be 4 proposals.
|
If it asks for both AH and ESP, there will be 8 proposals.
|
Note that the kernel may not support the algorithm you have specified.
|
.\"
|
.Bl -tag -width Ds -compact
|
.It Ic encryption_algorithm Ar algorithms ;
|
.Ic des , 3des , des_iv64 , des_iv32 ,
|
.Ic rc5 , rc4 , idea , 3idea ,
|
.Ic cast128 , blowfish , null_enc ,
|
.Ic twofish , rijndael , aes , camellia
|
.Pq used with ESP
|
.\"
|
.It Ic authentication_algorithm Ar algorithms ;
|
.Ic des , 3des , des_iv64 , des_iv32 ,
|
.Ic hmac_md5 , hmac_sha1 , hmac_sha256, hmac_sha384, hmac_sha512, non_auth
|
.Pq used with ESP authentication and AH
|
.\"
|
.It Ic compression_algorithm Ar algorithms ;
|
.Ic deflate
|
.Pq used with IPComp
|
.El
|
.El
|
.\"
|
.Ss Logging level
|
.Bl -tag -width Ds -compact
|
.It Ic log Ar level ;
|
Defines the logging level.
|
.Ar level
|
is one of following:
|
.Ic error , warning , notify , info , debug
|
and
|
.Ic debug2 .
|
The default is
|
.Ic info .
|
If you set the logging level too high on slower machines,
|
IKE negotiation can fail due to timing constraint changes.
|
.El
|
.\"
|
.Ss Specifies the way to pad
|
.Bl -tag -width Ds -compact
|
.It Ic padding { Ar statements Ic }
|
specifies the padding format.
|
The following are valid statements:
|
.Bl -tag -width Ds -compact
|
.It Ic randomize (on | off) ;
|
Enables the use of a randomized value for padding.
|
The default is on.
|
.It Ic randomize_length (on | off) ;
|
The pad length will be random.
|
The default is off.
|
.It Ic maximum_length Ar number ;
|
Defines a maximum padding length.
|
If
|
.Ic randomize_length
|
is off, this is ignored.
|
The default is 20 bytes.
|
.It Ic exclusive_tail (on | off) ;
|
Means to put the number of pad bytes minus one into the last part
|
of the padding.
|
The default is on.
|
.It Ic strict_check (on | off) ;
|
Means to constrain the peer to set the number of pad bytes.
|
The default is off.
|
.El
|
.El
|
.Ss ISAKMP mode configuration settings
|
.Bl -tag -width Ds -compact
|
.It Ic mode_cfg { Ar statements Ic }
|
Defines the information to return for remote hosts' ISAKMP mode config
|
requests.
|
Also defines the authentication source for remote peers
|
authenticating through Xauth.
|
.Pp
|
The following are valid statements:
|
.Bl -tag -width Ds -compact
|
.It Ic auth_source (system | radius | pam | ldap) ;
|
Specifies the source for authentication of users through Xauth.
|
.Ar system
|
means to use the Unix user database.
|
This is the default.
|
.Ar radius
|
means to use a RADIUS server.
|
It works only if
|
.Xr racoon 8
|
was built with libradius support. Radius configuration is hanlded by
|
.Xr radius.conf 5 .
|
.Ar pam
|
means to use PAM.
|
It works only if
|
.Xr racoon 8
|
was built with libpam support.
|
.Ar ldap
|
means to use LDAP.
|
It works only if
|
.Xr racoon 8
|
was built with libldap support. LDAP configuration is handled by
|
statements in the
|
.Ic ldapcfg
|
section.
|
.It Ic auth_groups Ar "group1", ... ;
|
Specifies the group memberships for Xauth in quoted group name strings.
|
When defined, the authenticating user must be a member of at least one
|
group for Xauth to succeed.
|
.It Ic group_source (system | ldap) ;
|
Specifies the source for group validataion of users through Xauth.
|
.Ar system
|
means to use the Unix user database.
|
This is the default.
|
.Ar ldap
|
means to use LDAP.
|
It works only if
|
.Xr racoon 8
|
was built with libldap support and requires LDAP authentication.
|
LDAP configuration is handled by statements in the
|
.Ic ldapcfg
|
section.
|
.It Ic conf_source (local | radius | ldap) ;
|
Specifies the source for IP addresses and netmask allocated through ISAKMP
|
mode config.
|
.Ar local
|
means to use the local IP pool defined by the
|
.Ic network4
|
and
|
.Ic pool_size
|
statements.
|
This is the default.
|
.Ar radius
|
means to use a RADIUS server.
|
It works only if
|
.Xr racoon 8
|
was built with libradius support and requires RADIUS authentiation.
|
RADIUS configuration is handled by
|
.Xr radius.conf 5 .
|
.Ar ldap
|
means to use an LDAP server.
|
It works only if
|
.Xr racoon 8
|
was built with libldap support and requires LDAP authentication.
|
LDAP configuration is handled by
|
statements in the
|
.Ic ldapcfg
|
section.
|
.It Ic accounting (none | system | radius | pam) ;
|
Enables or disables accounting for Xauth logins and logouts.
|
The default is
|
.Ar none
|
which disable accounting.
|
Specifying
|
.Ar system
|
enables system accounting through
|
.Xr utmp 5 .
|
Specifying
|
.Ar radius
|
enables RADIUS accounting.
|
It works only if
|
.Xr racoon 8
|
was built with libradius support and requires RADIUS authentication.
|
RADIUS configuration is handled by
|
.Xr radius.conf 5 .
|
Specifying
|
.Ar pam
|
enables PAM accounting.
|
It works only if
|
.Xr racoon 8
|
was build with libpam support and requires PAM authentication.
|
.It Ic pool_size Ar size
|
Specify the size of the IP address pool, either local or allocated
|
through RADIUS.
|
.Ic conf_source
|
selects the local pool or the RADIUS configuration, but in both
|
configurations, you cannot have more than
|
.Ar size
|
users connected at the same time.
|
The default is 255.
|
.It Ic network4 Ar address ;
|
.It Ic netmask4 Ar address ;
|
The local IP pool base address and network mask from which dynamically
|
allocated IPv4 addresses should be taken.
|
This is used if
|
.Ic conf_source
|
is set to
|
.Ar local
|
or if the RADIUS server returned
|
.Ar 255.255.255.254 .
|
Default is
|
.Ar 0.0.0.0/0.0.0.0 .
|
.It Ic dns4 Ar addresses ;
|
A list of IPv4 addresses for DNS servers, separated by commas, or on multiple
|
.Ic dns4
|
lines.
|
.It Ic wins4 Ar addresses ;
|
A list of IPv4 address for WINS servers. The keyword
|
.It nbns4
|
can also be used as an alias for
|
.It wins4 .
|
.It Ic split_network (include | local_lan) Ar network/mask, ...
|
The network configuration to send, in cidr notation (e.g. 192.168.1.0/24).
|
If
|
.Ic include
|
is specified, the tunnel should be only used to encrypt the indicated
|
destinations ; otherwise, if
|
.Ic local_lan
|
is used, everything will pass through the tunnel but those destinations.
|
.It Ic default_domain Ar domain ;
|
The default DNS domain to send.
|
.It Ic split_dns Ar "domain", ...
|
The split dns configuration to send, in quoted domain name strings.
|
This list can be used to describe a list of domain names for which
|
a peer should query a modecfg assigned dns server.
|
DNS queries for all other domains would be handled locally.
|
(Cisco VPN client only).
|
.It Ic banner Ar path ;
|
The path of a file displayed on the client at connection time.
|
Default is
|
.Ar /etc/motd .
|
.It Ic auth_throttle Ar delay ;
|
On each failed Xauth authentication attempt, refuse new attempts for a set
|
.Ar delay
|
of seconds.
|
This is to avoid dictionary attacks on Xauth passwords.
|
Default is one second.
|
Set to zero to disable authentication delay.
|
.It Ic pfs_group Ar group ;
|
Sets the PFS group used in the client proposal (Cisco VPN client only).
|
Default is 0.
|
.It Ic save_passwd (on | off) ;
|
Allow the client to save the Xauth password (Cisco VPN client only).
|
Default is off.
|
.El
|
.El
|
.Ss Ldap configuration settings
|
.Bl -tag -width Ds -compact
|
.It Ic ldapcfg { Ar statements Ic }
|
Defines the parameters that will be used to communicate with an ldap
|
server for
|
.Ic xauth
|
authentication.
|
.Pp
|
The following are valid statements:
|
.Bl -tag -width Ds -compact
|
.It Ic version (2 | 3) ;
|
The ldap protocol version used to communicate with the server.
|
The default is
|
.Ic 3 .
|
.It Ic host Ar (hostname | address) ;
|
The host name or ip address of the ldap server.
|
The default is
|
.Ic localhost .
|
.It Ic port Ar number;
|
The port that the ldap server is configured to listen on.
|
The default is
|
.Ic 389 .
|
.It Ic base Ar distinguished name;
|
The ldap search base.
|
This option has no default value.
|
.It Ic subtree (on | off) ;
|
Use the subtree ldap search scope.
|
Otherwise, use the one level search scope.
|
The default is
|
.Ic off .
|
.It Ic bind_dn Ar distinguised name;
|
The user dn used to optionaly bind as before performing ldap search operations.
|
If this option is not specified, anonymous binds are used.
|
.It Ic bind_pw Ar string;
|
The password used when binding as
|
.Ic bind_dn .
|
.It Ic attr_user Ar attribute name;
|
The attribute used to specify a users name in an ldap directory.
|
For example,
|
if a user dn is "cn=jdoe,dc=my,dc=net" then the attribute would be "cn".
|
The default value is
|
.Ic cn .
|
.It Ic attr_addr Ar attribute name;
|
.It Ic attr_mask Ar attribute name;
|
The attributes used to specify a users network address and subnet mask in an
|
ldap directory.
|
These values are forwarded during mode_cfg negotiation when
|
the conf_source is set to ldap.
|
The default values are
|
.Ic racoon-address
|
and
|
.Ic racoon-netmask .
|
.It Ic attr_group Ar attribute name;
|
The attribute used to specify a group name in an ldap directory.
|
For example,
|
if a group dn is "cn=users,dc=my,dc=net" then the attribute would be "cn".
|
The default value is
|
.Ic cn .
|
.It Ic attr_member Ar attribute name;
|
The attribute used to specify group membership in an ldap directory.
|
The default value is
|
.Ic member .
|
.El
|
.El
|
.Ss Special directives
|
.Bl -tag -width Ds -compact
|
.It Ic complex_bundle (on | off) ;
|
defines the interpretation of proposal in the case of SA bundle.
|
Normally
|
.Dq IP AH ESP IP payload
|
is proposed as
|
.Dq AH tunnel and ESP tunnel .
|
The interpretation is more common to other IKE implementations, however,
|
it allows very limited set of combinations for proposals.
|
With the option enabled, it will be proposed as
|
.Dq AH transport and ESP tunnel .
|
The default value is
|
.Ic off .
|
.El
|
.\"
|
.Ss Pre-shared key File
|
The pre-shared key file defines pairs of identifiers and corresponding
|
shared secret keys which are used in the pre-shared key authentication
|
method in phase 1.
|
The pair in each line is separated by some number of blanks and/or tab
|
characters like in the
|
.Xr hosts 5
|
file.
|
Key can include blanks because everything after the first blanks
|
is interpreted as the secret key.
|
Lines starting with
|
.Ql #
|
are ignored.
|
Keys which start with
|
.Ql 0x
|
are interpreted as hexadecimal strings.
|
Note that the file must be owned by the user ID running
|
.Xr racoon 8
|
.Pq usually the privileged user ,
|
and must not be accessible by others.
|
.\"
|
.Sh EXAMPLES
|
The following shows how the remote directive should be configured.
|
.Bd -literal -offset
|
path pre_shared_key "/usr/local/v6/etc/psk.txt" ;
|
remote anonymous
|
{
|
exchange_mode aggressive,main,base;
|
lifetime time 24 hour;
|
proposal {
|
encryption_algorithm 3des;
|
hash_algorithm sha1;
|
authentication_method pre_shared_key;
|
dh_group 2;
|
}
|
}
|
|
sainfo anonymous
|
{
|
pfs_group 2;
|
lifetime time 12 hour ;
|
encryption_algorithm 3des, blowfish 448, twofish, rijndael ;
|
authentication_algorithm hmac_sha1, hmac_md5 ;
|
compression_algorithm deflate ;
|
}
|
.Ed
|
.Pp
|
If you are configuring plain RSA authentication, the remote directive
|
should look like the following:
|
.Bd -literal -offset
|
path certificate "/usr/local/v6/etc" ;
|
remote anonymous
|
{
|
exchange_mode main,base ;
|
lifetime time 12 hour ;
|
certificate_type plain_rsa "/usr/local/v6/etc/myrsakey.priv";
|
peers_certfile plain_rsa "/usr/local/v6/etc/yourrsakey.pub";
|
proposal {
|
encryption_algorithm aes ;
|
hash_algorithm sha1 ;
|
authentication_method rsasig ;
|
dh_group 2 ;
|
}
|
}
|
.Ed
|
.Pp
|
The following is a sample for the pre-shared key file.
|
.Bd -literal -offset
|
10.160.94.3 mekmitasdigoat
|
172.16.1.133 0x12345678
|
194.100.55.1 whatcertificatereally
|
3ffe:501:410:ffff:200:86ff:fe05:80fa mekmitasdigoat
|
3ffe:501:410:ffff:210:4bff:fea2:8baa mekmitasdigoat
|
foo@kame.net mekmitasdigoat
|
foo.kame.net hoge
|
.Ed
|
.\"
|
.Sh SEE ALSO
|
.Xr racoon 8 ,
|
.Xr racoonctl 8 ,
|
.Xr setkey 8
|
.\"
|
.Sh HISTORY
|
The
|
.Nm
|
configuration file first appeared in the
|
.Dq YIPS
|
Yokogawa IPsec implementation.
|
.\"
|
.Sh BUGS
|
Some statements may not be handled by
|
.Xr racoon 8
|
yet.
|
.Pp
|
Diffie-Hellman computation can take a very long time, and may cause
|
unwanted timeouts, specifically when a large D-H group is used.
|
.\"
|
.Sh SECURITY CONSIDERATIONS
|
The use of IKE phase 1 aggressive mode is not recommended,
|
as described in
|
.Li http://www.kb.cert.org/vuls/id/886601 .
|
