Bug #2812 ยป pfsense.txt
| 1 |
# This file is automatically generated. Do not edit |
|---|---|
| 2 |
path pre_shared_key "/var/etc/psk.txt"; |
| 3 |
|
| 4 |
path certificate "/var/etc"; |
| 5 |
|
| 6 |
|
| 7 |
listen |
| 8 |
{
|
| 9 |
adminsock "/var/db/racoon/racoon.sock" "root" "wheel" 0660; |
| 10 |
isakmp 192.168.10.2 [500]; |
| 11 |
isakmp_natt 192.168.10.2 [4500]; |
| 12 |
} |
| 13 |
|
| 14 |
|
| 15 |
remote x.x.x.x |
| 16 |
{
|
| 17 |
ph1id 1; |
| 18 |
exchange_mode aggressive; |
| 19 |
my_identifier address x.x.x.x; |
| 20 |
peers_identifier address x.x.x.x; |
| 21 |
ike_frag on; |
| 22 |
generate_policy = off; |
| 23 |
initial_contact = on; |
| 24 |
nat_traversal = on; |
| 25 |
|
| 26 |
|
| 27 |
dpd_delay = 10; |
| 28 |
dpd_maxfail = 5; |
| 29 |
support_proxy on; |
| 30 |
proposal_check claim; |
| 31 |
|
| 32 |
|
| 33 |
proposal |
| 34 |
{
|
| 35 |
authentication_method pre_shared_key; |
| 36 |
encryption_algorithm 3des; |
| 37 |
hash_algorithm sha1; |
| 38 |
dh_group 2; |
| 39 |
lifetime time 28800 secs; |
| 40 |
} |
| 41 |
} |
| 42 |
|
| 43 |
sainfo subnet 192.168.10.0/24 any subnet 192.168.0.0/21 any |
| 44 |
{
|
| 45 |
remoteid 1; |
| 46 |
encryption_algorithm 3des; |
| 47 |
authentication_algorithm hmac_sha1; |
| 48 |
pfs_group 2; |
| 49 |
lifetime time 3600 secs; |
| 50 |
compression_algorithm deflate; |
| 51 |
} |
| 52 |
|
| 53 |
sainfo subnet x.x.x.x/27 any |
| 54 |
{
|
| 55 |
remoteid 1; |
| 56 |
encryption_algorithm 3des; |
| 57 |
authentication_algorithm hmac_sha1; |
| 58 |
pfs_group 2; |
| 59 |
lifetime time 3600 secs; |
| 60 |
compression_algorithm deflate; |
| 61 |
} |