From 7f7ed5dd8ac846fa27ab966f513c45d9d351e567 Mon Sep 17 00:00:00 2001 From: Giorgos Keramidas Date: Sun, 18 Jul 2004 03:00:57 +0000 Subject: [PATCH] Expand all TABS to spaces in a to avoid indentation weirdness in rendered output. --- .../articles/checkpoint/article.sgml | 86 +++++++++---------- 1 file changed, 43 insertions(+), 43 deletions(-) diff --git a/en_US.ISO8859-1/articles/checkpoint/article.sgml b/en_US.ISO8859-1/articles/checkpoint/article.sgml index 16301a234a..fa5f511b7a 100644 --- a/en_US.ISO8859-1/articles/checkpoint/article.sgml +++ b/en_US.ISO8859-1/articles/checkpoint/article.sgml @@ -279,77 +279,77 @@ END # # search this file for pre_shared_key with various ID key. # - path pre_shared_key "/usr/local/etc/racoon/psk.txt" ; - log debug; + path pre_shared_key "/usr/local/etc/racoon/psk.txt" ; + log debug; # # "padding" defines some parameter of padding. You should not touch these. # - padding + padding { - maximum_length 20; # maximum padding length. - randomize off; # enable randomize length. - strict_check off; # enable strict check. - exclusive_tail off; # extract last one octet. + maximum_length 20; # maximum padding length. + randomize off; # enable randomize length. + strict_check off; # enable strict check. + exclusive_tail off; # extract last one octet. } - listen + listen { - #isakmp ::1 [7000]; - #isakmp 0.0.0.0 [500]; - #admin [7002]; # administrative port by kmpstat. - #strict_address; # required all addresses must be bound. + #isakmp ::1 [7000]; + #isakmp 0.0.0.0 [500]; + #admin [7002]; # administrative port by kmpstat. + #strict_address; # required all addresses must be bound. } # # Specification of default various timers. # - timer + timer { # # These values can be changed per remote node. # - counter 5; # maximum trying count to send. - interval 20 sec; # maximum interval to resend. - persend 1; # the number of packets per a send. + counter 5; # maximum trying count to send. + interval 20 sec; # maximum interval to resend. + persend 1; # the number of packets per a send. # # timer for waiting to complete each phase. # - phase1 30 sec; - phase2 15 sec; + phase1 30 sec; + phase2 15 sec; } - remote anonymous + remote anonymous { - exchange_mode aggressive,main; # For Firewall-1 Aggressive mode + exchange_mode aggressive,main; # For Firewall-1 Aggressive mode - #my_identifier address; - #my_identifier user_fqdn ""; - #my_identifier address ""; - #peers_identifier address ""; - #certificate_type x509 "" ""; + #my_identifier address; + #my_identifier user_fqdn ""; + #my_identifier address ""; + #peers_identifier address ""; + #certificate_type x509 "" ""; - nonce_size 16; - lifetime time 10 min; # sec,min,hour - lifetime byte 5 MB; # B,KB,GB - initial_contact on; - support_mip6 on; - proposal_check obey; # obey, strict or claim + nonce_size 16; + lifetime time 10 min; # sec,min,hour + lifetime byte 5 MB; # B,KB,GB + initial_contact on; + support_mip6 on; + proposal_check obey; # obey, strict or claim - proposal { - encryption_algorithm 3des; - hash_algorithm md5; - authentication_method pre_shared_key; - dh_group 2 ; + proposal { + encryption_algorithm 3des; + hash_algorithm md5; + authentication_method pre_shared_key; + dh_group 2 ; } } - sainfo anonymous + sainfo anonymous { - pfs_group 1; - lifetime time 10 min; - lifetime byte 50000 KB; - encryption_algorithm 3des; - authentication_algorithm hmac_md5; - compression_algorithm deflate ; + pfs_group 1; + lifetime time 10 min; + lifetime byte 50000 KB; + encryption_algorithm 3des; + authentication_algorithm hmac_md5; + compression_algorithm deflate ; } Ensure that the /usr/local/etc/racoon/psk.txt