MFen:
Makefile 1.5 --> 1.8
article.sgml 1.18 --> 1.23
PR:
docs/145354
Approved by: maxim (mentor), marck (mentor)
This commit is contained in:
Taras Korenko
parent
555d4451e4
commit
7b30d4991a
Notes:
svn2git
2020-12-08 03:00:23 +00:00
svn path=/head/; revision=35966
2 changed files with 56 additions and 63 deletions
ru_RU.KOI8-R/articles/checkpoint
|
|
@ -4,7 +4,7 @@
|
|||
# $FreeBSD$
|
||||
# $FreeBSDru: frdp/doc/ru_RU.KOI8-R/articles/checkpoint/Makefile,v 1.1 2004/01/10 08:43:19 andy Exp $
|
||||
#
|
||||
# Original revision: 1.5
|
||||
# Original revision: 1.8
|
||||
#
|
||||
|
||||
DOC?= article
|
||||
|
|
@ -14,10 +14,9 @@ FORMATS?= html
|
|||
INSTALL_COMPRESSED?=gz
|
||||
INSTALL_ONLY_COMPRESSED?=
|
||||
|
||||
SRCS= article.sgml
|
||||
|
||||
SRCS= article.sgml
|
||||
IMAGES_EN= networks.pic
|
||||
|
||||
URL_RELPREFIX?= ../../../..
|
||||
DOC_PREFIX?= ${.CURDIR}/../../..
|
||||
|
||||
.include "${DOC_PREFIX}/share/mk/doc.project.mk"
|
||||
|
|
|
|||
|
|
@ -3,7 +3,7 @@
|
|||
|
||||
$FreeBSDru: frdp/doc/ru_RU.KOI8-R/articles/checkpoint/article.sgml,v 1.5 2004/07/16 12:05:55 den Exp $
|
||||
|
||||
Original revision: 1.18
|
||||
Original revision: 1.23
|
||||
-->
|
||||
|
||||
<!-- Copyright (c) 2001 The FreeBSD Documentation Project
|
||||
|
|
@ -37,12 +37,10 @@
|
|||
-->
|
||||
|
||||
<!DOCTYPE article PUBLIC "-//FreeBSD//DTD DocBook V4.1-Based Extension//EN" [
|
||||
<!ENTITY % man PUBLIC "-//FreeBSD//ENTITIES DocBook Manual Page Entities//EN">
|
||||
%man;
|
||||
<!ENTITY % articles.ent PUBLIC "-//FreeBSD//ENTITIES DocBook FreeBSD Articles Entity Set//EN">
|
||||
%articles.ent;
|
||||
<!ENTITY legalnotice SYSTEM "../../share/sgml/legalnotice.sgml">
|
||||
|
||||
<!ENTITY % trademarks PUBLIC "-//FreeBSD//ENTITIES DocBook Trademark Entities//RU">
|
||||
%trademarks;
|
||||
]>
|
||||
|
||||
<article lang="ru">
|
||||
|
|
@ -76,7 +74,9 @@
|
|||
<pubdate>$FreeBSD$</pubdate>
|
||||
|
||||
<copyright>
|
||||
<year>2001, 2002, 2003</year>
|
||||
<year>2001</year>
|
||||
<year>2002</year>
|
||||
<year>2003</year>
|
||||
|
||||
<holder role="mailto:jono@securityreports.com">Jon Orbeton</holder>
|
||||
</copyright>
|
||||
|
|
@ -139,8 +139,7 @@ options IPSEC_ESP
|
|||
options IPSEC_DEBUG</programlisting>
|
||||
|
||||
<para>äÌÑ ÐÏÌÕÞÅÎÉÑ ÉÎÆÏÒÍÁÃÉÉ ÐÏ ÐÏÓÔÒÏÅÎÉÀ ÎÅÓÔÁÎÄÁÒÔÎÏÇÏ ÑÄÒÁ,
|
||||
ÏÂÒÁÔÉÔÅÓØ Ë <ulink
|
||||
url="http://www.FreeBSD.org/doc/ru_RU.KOI8-R/books/handbook/kernelconfig.html">
|
||||
ÏÂÒÁÔÉÔÅÓØ Ë <ulink url="&url.books.handbook;/kernelconfig.html">
|
||||
òÕËÏ×ÏÄÓÔ×Õ ÐÏ FreeBSD</ulink>. ðÏÖÁÌÕÊÓÔÁ, ÚÁÍÅÔØÔÅ, ÞÔÏ ÍÅÖÄÕ ÈÏÓÔÁÍÉ
|
||||
<trademark class='registered'>Firewall-1</trademark> É
|
||||
<acronym>GW</acronym> Ó FreeBSD ÄÏÌÖÎÙ ÂÙÔØ ÒÁÚÒÅÛÅÎÙ ÓÏÅÄÉÎÅÎÉÑ
|
||||
|
|
@ -296,77 +295,77 @@ END
|
|||
#
|
||||
# search this file for pre_shared_key with various ID key.
|
||||
#
|
||||
path pre_shared_key "/usr/local/etc/racoon/psk.txt" ;
|
||||
log debug;
|
||||
path pre_shared_key "/usr/local/etc/racoon/psk.txt" ;
|
||||
log debug;
|
||||
#
|
||||
# "padding" defines some parameter of padding. You should not touch these.
|
||||
#
|
||||
padding
|
||||
padding
|
||||
{
|
||||
maximum_length 20; # maximum padding length.
|
||||
randomize off; # enable randomize length.
|
||||
strict_check off; # enable strict check.
|
||||
exclusive_tail off; # extract last one octet.
|
||||
maximum_length 20; # maximum padding length.
|
||||
randomize off; # enable randomize length.
|
||||
strict_check off; # enable strict check.
|
||||
exclusive_tail off; # extract last one octet.
|
||||
}
|
||||
|
||||
listen
|
||||
listen
|
||||
{
|
||||
#isakmp ::1 [7000];
|
||||
#isakmp 0.0.0.0 [500];
|
||||
#admin [7002]; # administrative port by kmpstat.
|
||||
#strict_address; # required all addresses must be bound.
|
||||
#isakmp ::1 [7000];
|
||||
#isakmp 0.0.0.0 [500];
|
||||
#admin [7002]; # administrative port by kmpstat.
|
||||
#strict_address; # required all addresses must be bound.
|
||||
}
|
||||
#
|
||||
# Specification of default various timers.
|
||||
#
|
||||
timer
|
||||
timer
|
||||
{
|
||||
#
|
||||
# These values can be changed per remote node.
|
||||
#
|
||||
counter 5; # maximum trying count to send.
|
||||
interval 20 sec; # maximum interval to resend.
|
||||
persend 1; # the number of packets per a send.
|
||||
counter 5; # maximum trying count to send.
|
||||
interval 20 sec; # maximum interval to resend.
|
||||
persend 1; # the number of packets per a send.
|
||||
#
|
||||
# timer for waiting to complete each phase.
|
||||
#
|
||||
phase1 30 sec;
|
||||
phase2 15 sec;
|
||||
phase1 30 sec;
|
||||
phase2 15 sec;
|
||||
}
|
||||
|
||||
remote anonymous
|
||||
remote anonymous
|
||||
{
|
||||
exchange_mode aggressive,main; # For Firewall-1 Aggressive mode
|
||||
exchange_mode aggressive,main; # For Firewall-1 Aggressive mode
|
||||
|
||||
#my_identifier address;
|
||||
#my_identifier user_fqdn "";
|
||||
#my_identifier address "";
|
||||
#peers_identifier address "";
|
||||
#certificate_type x509 "" "";
|
||||
#my_identifier address;
|
||||
#my_identifier user_fqdn "";
|
||||
#my_identifier address "";
|
||||
#peers_identifier address "";
|
||||
#certificate_type x509 "" "";
|
||||
|
||||
nonce_size 16;
|
||||
lifetime time 10 min; # sec,min,hour
|
||||
lifetime byte 5 MB; # B,KB,GB
|
||||
initial_contact on;
|
||||
support_mip6 on;
|
||||
proposal_check obey; # obey, strict or claim
|
||||
nonce_size 16;
|
||||
lifetime time 10 min; # sec,min,hour
|
||||
lifetime byte 5 MB; # B,KB,GB
|
||||
initial_contact on;
|
||||
support_mip6 on;
|
||||
proposal_check obey; # obey, strict or claim
|
||||
|
||||
proposal {
|
||||
encryption_algorithm 3des;
|
||||
hash_algorithm md5;
|
||||
authentication_method pre_shared_key;
|
||||
dh_group 2 ;
|
||||
proposal {
|
||||
encryption_algorithm 3des;
|
||||
hash_algorithm md5;
|
||||
authentication_method pre_shared_key;
|
||||
dh_group 2 ;
|
||||
}
|
||||
}
|
||||
|
||||
sainfo anonymous
|
||||
sainfo anonymous
|
||||
{
|
||||
pfs_group 1;
|
||||
lifetime time 10 min;
|
||||
lifetime byte 50000 KB;
|
||||
encryption_algorithm 3des;
|
||||
authentication_algorithm hmac_md5;
|
||||
compression_algorithm deflate ;
|
||||
pfs_group 1;
|
||||
lifetime time 10 min;
|
||||
lifetime byte 50000 KB;
|
||||
encryption_algorithm 3des;
|
||||
authentication_algorithm hmac_md5;
|
||||
compression_algorithm deflate ;
|
||||
}</programlisting>
|
||||
|
||||
<para>ðÒÏ×ÅÒØÔÅ, ÞÔÏ ÆÁÊÌ
|
||||
|
|
@ -437,17 +436,12 @@ scheme: IKE methods: Combined ESP: 3DES + MD5 + PFS (phase 2 completion) for hos
|
|||
|
||||
<itemizedlist>
|
||||
<listitem>
|
||||
<para><ulink url="http://www.FreeBSD.org/handbook/ipsec.html">
|
||||
òÕËÏ×ÏÄÓÔ×Ï FreeBSD: IPsec</ulink></para>
|
||||
<para>òÕËÏ×ÏÄÓÔ×Ï FreeBSD: VPN ÞÅÒÅÚ IPsec <ulink
|
||||
url="&url.books.handbook;/ipsec.html"></ulink></para>
|
||||
</listitem>
|
||||
|
||||
<listitem>
|
||||
<para><ulink url="http://www.kame.net">ðÒÏÅËÔ KAME</ulink></para>
|
||||
</listitem>
|
||||
|
||||
<listitem>
|
||||
<para><ulink url="http://www.x-itec.de/projects/tuts/ipsec-howto.txt">
|
||||
ëÒÁÔËÉÊ HOWTO ÐÏ FreeBSD IPsec </ulink></para>
|
||||
<para>ðÒÏÅËÔ KAME <ulink url="http://www.kame.net"></ulink></para>
|
||||
</listitem>
|
||||
</itemizedlist>
|
||||
</sect1>
|
||||
|
|
|
|||
Loading…
Reference in a new issue