search for: ipsec_doi

...ximum trying count to send. interval 20 sec; # maximum interval to resend. persend 1; # the number of packets per a send. # timer for waiting to complete each phase. phase1 30 sec; phase2 15 sec; } remote anonymous { #exchange_mode main,aggressive; exchange_mode main,base,aggressive; doi ipsec_doi; #situation identity_only; my_identifier user_fqdn "bbedevil"; peers_identifier user_fqdn "bbeameliarouter"; nonce_size 16; lifetime time 10000 sec; initial_contact on; support_mip6 on; proposal_check obey; proposal { encryption_algorithm 3des; hash_algorithm md5;...

...interval 20 sec; # maximum interval to resend. persend 1; # the number of packets per a send. # timer for waiting to complete each phase. phase1 15 sec; phase2 30 sec; } remote anonymous { #exchange_mode aggressive,main; doi ipsec_doi; exchange_mode main,aggressive; nonce_size 32; situation identity_only; lifetime time 1 min; # sec,min,hour initial_contact on; support_mip6 on; passive on; proposal_check claim; # obey, strict or claim proposal {...

...path include "/usr/local/etc/racoon"; path pre_shared_key "/usr/local/etc/racoon/psk.txt"; path certificate "/usr/local/etc/racoon/certs"; listen { isakmp 192.168.2.10; strict_address; } remote 192.168.2.11 { exchange_mode main; doi ipsec_doi; situation identity_only; my_identifier asn1dn; peers_identifier asn1dn; verify_identifier on; certificate_type x509 "mad.public" "mad.private"; peers_certfile x509 "laptop.public"; send_cert on; send_cr o...

...n on both to 30 seconds or less. Below is my racoon.conf. I've watched the racoon logs, and it doesn't give me any errors, or failed negotiations. Any ideas? path pre_shared_key "/usr/local/etc/racoon/psk.txt"; remote anonymous { exchange_mode aggressive; doi ipsec_doi; situation identity_only; \ nonce_size 256; lifetime time 30 min; # sec,min,hour initial_contact on; support_mip6 off; proposal_check obey; # obey, strict or claim proposal { encryption_algorithm 3des; h...

SuSE10.2 Linux Kernel 2.6.18 Patched, Whenever I try to establish a connection raccoon fails giving the following error. Raccoon config ################# remote 67.101.176.*** { exchange_mode main,aggressive; doi ipsec_doi; situation identity_only; my_identifier address; send_cr off; send_cert off; lifetime time 2 min; # sec,min,hour initial_contact on; proposal_check obey; # obey, strict or claim proposal { encryption_algorithm 3des...

...e ah/tunnel/192.168.1.42-192.168.1.250/require; racoon.conf on phaedrus: path include "/etc/racoon"; path pre_shared_key "/etc/racoon/psk.txt"; path certificate "/etc/racoon/certs"; remote 192.168.1.250 { exchange_mode aggressive,main; doi ipsec_doi; situation identity_only; my_identifier address; lifetime time 2 min; # sec,min,hour initial_contact on; proposal_check obey; # obey, strict or claim proposal { encryption_algorithm 3des; hash_algorithm...

.../root/psk.txt"; log debug2; padding { maximum_length 20; randomize off; strict_check off; exclusive_tail off; } listen { isakmp 192.168.190.43 [500]; } timer { counter 5; interval 20 sec; persend 1; phase1 30 sec; phase2 15 sec; } remote 192.168.190.43 { exchange_mode main; doi ipsec_doi; situation identity_only; my_identifier address 192.168.190.44; peers_identifier address 192.168.190.43; lifetime time 24 hour; nonce_size 16; initial_contact on; proposal_check obey; proposal { encryption_algorithm 3des; hash_algorithm sha1; authentication_method pre_shared_key; d...

...interval 20 sec; # maximum interval to resend. persend 1; # the number of packets per a send. # timer for waiting to complete each phase. phase1 30 sec; phase2 15 sec; } remote anonymous { exchange_mode aggressive; doi ipsec_doi; generate_policy on; passive on; lifetime time 24 hour; #my_identifier user_fqdn "REMOVED"; peers_identifier user_fqdn "REMOVED"; verify_identifier on; proposal_check obey; proposal { enc...

...interval 20 sec; # maximum interval to resend. persend 1; # the number of packets per a send. # timer for waiting to complete each phase. phase1 30 sec; phase2 15 sec; } remote anonymous { exchange_mode aggressive; doi ipsec_doi; generate_policy on; passive on; lifetime time 24 hour; #my_identifier user_fqdn "REMOVED"; peers_identifier user_fqdn "REMOVED"; verify_identifier on; proposal_check obey; proposal { enc...

...8:isakmp_ph1begin_i(): initiate new phase 1 negotiation: 10.0.0.1[500]<=>10.0.0.10[500] 2004-04-27 20:52:18: INFO: isakmp.c:813:isakmp_ph1begin_i(): begin Aggressive mode. 2004-04-27 20:52:18: DEBUG: isakmp.c:2006:isakmp_newcookie(): new cookie: 055c6e2d1a6f5cf0 2004-04-27 20:52:18: DEBUG: ipsec_doi.c:3238:ipsecdoi_setid1(): use ID type of IPv4_address 2004-04-27 20:52:19: DEBUG: oakley.c:300:oakley_dh_generate(): compute DH's private. 2004-04-27 20:52:19: DEBUG: plog.c:193:plogdump(): 6e308efc dd12bb8c 43b3870d 470f6826 b75dcfed 51e9a827 7bfc9fb6 104e5038 ad255135 511f1047 029ebff4 059...