Displaying 7 results from an estimated 7 matches for "identity_on".
Did you mean:
identity_f
2004 Sep 24
2
strange behavior of ipsec tunnel mode
...al/etc/racoon";
path pre_shared_key "/usr/local/etc/racoon/psk.txt";
path certificate "/usr/local/etc/racoon/certs";
listen {
isakmp 192.168.2.10;
strict_address;
}
remote 192.168.2.11 {
exchange_mode main;
doi ipsec_doi;
situation identity_only;
my_identifier asn1dn;
peers_identifier asn1dn;
verify_identifier on;
certificate_type x509 "mad.public" "mad.private";
peers_certfile x509 "laptop.public";
send_cert on;
send_cr on;
verify_cert on;...
2003 Aug 07
1
IPSec delays
...ss. Below is my racoon.conf. I've watched the racoon logs, and it doesn't give me any errors, or failed negotiations. Any ideas?
path pre_shared_key "/usr/local/etc/racoon/psk.txt";
remote anonymous
{
exchange_mode aggressive;
doi ipsec_doi;
situation identity_only;
\
nonce_size 256;
lifetime time 30 min; # sec,min,hour
initial_contact on;
support_mip6 off;
proposal_check obey; # obey, strict or claim
proposal {
encryption_algorithm 3des;
hash_algorithm sha1;...
2007 Mar 22
0
Racoon ERROR: Invalid CR type 0
SuSE10.2
Linux Kernel 2.6.18 Patched,
Whenever I try to establish a connection raccoon fails giving the
following error.
Raccoon config #################
remote 67.101.176.***
{
exchange_mode main,aggressive;
doi ipsec_doi;
situation identity_only;
my_identifier address;
send_cr off;
send_cert off;
lifetime time 2 min; # sec,min,hour
initial_contact on;
proposal_check obey; # obey, strict or claim
proposal {
encryption_algorithm 3des;
hash_algorithm sh...
2004 Oct 22
0
IPSec tunnel mode with IKE daemon
....42-192.168.1.250/require;
racoon.conf on phaedrus:
path include "/etc/racoon";
path pre_shared_key "/etc/racoon/psk.txt";
path certificate "/etc/racoon/certs";
remote 192.168.1.250
{
exchange_mode aggressive,main;
doi ipsec_doi;
situation identity_only;
my_identifier address;
lifetime time 2 min; # sec,min,hour
initial_contact on;
proposal_check obey; # obey, strict or claim
proposal {
encryption_algorithm 3des;
hash_algorithm sha1;
authentic...
2005 Dec 07
1
racoon with freebsd-4.11 crashes
...og debug2;
padding {
maximum_length 20;
randomize off;
strict_check off;
exclusive_tail off;
}
listen {
isakmp 192.168.190.43 [500];
}
timer {
counter 5;
interval 20 sec;
persend 1;
phase1 30 sec;
phase2 15 sec;
}
remote 192.168.190.43 {
exchange_mode main;
doi ipsec_doi;
situation identity_only;
my_identifier address 192.168.190.44;
peers_identifier address 192.168.190.43;
lifetime time 24 hour;
nonce_size 16;
initial_contact on;
proposal_check obey;
proposal {
encryption_algorithm 3des;
hash_algorithm sha1;
authentication_method pre_shared_key;
dh_group 1;
}
}
sainfo...
2004 Jan 08
1
Windows 2000 <-> FreeBSD IPsec problem
...# the number of packets per a send.
# timer for waiting to complete each phase.
phase1 15 sec;
phase2 30 sec;
}
remote anonymous
{
#exchange_mode aggressive,main;
doi ipsec_doi;
exchange_mode main,aggressive;
nonce_size 32;
situation identity_only;
lifetime time 1 min; # sec,min,hour
initial_contact on;
support_mip6 on;
passive on;
proposal_check claim; # obey, strict or claim
proposal {
encryption_algorithm 3des;
hash_algorithm md5;
authe...
2004 Jul 26
1
Cisco IOS and racoon
...end.
interval 20 sec; # maximum interval to resend.
persend 1; # the number of packets per a send.
# timer for waiting to complete each phase.
phase1 30 sec;
phase2 15 sec;
}
remote anonymous
{
#exchange_mode main,aggressive;
exchange_mode main,base,aggressive;
doi ipsec_doi;
#situation identity_only;
my_identifier user_fqdn "bbedevil";
peers_identifier user_fqdn "bbeameliarouter";
nonce_size 16;
lifetime time 10000 sec;
initial_contact on;
support_mip6 on;
proposal_check obey;
proposal {
encryption_algorithm 3des;
hash_algorithm md5;
authentication_method pre...