# This file is automatically generated. Do not edit
path pre_shared_key "/var/etc/psk.txt";

path certificate  "/var/etc";


listen
{
	adminsock "/var/db/racoon/racoon.sock" "root" "wheel" 0660;
	isakmp 192.168.10.2 [500];
	isakmp_natt 192.168.10.2 [4500];
}


remote x.x.x.x
{
	ph1id 1;
	exchange_mode aggressive;
	my_identifier address x.x.x.x;
	peers_identifier address x.x.x.x;
	ike_frag on;
	generate_policy = off;
	initial_contact = on;
	nat_traversal = on;
	
	
	dpd_delay = 10;
	dpd_maxfail = 5;
	support_proxy on;
	proposal_check claim;
	

	proposal
	{
		authentication_method pre_shared_key;
		encryption_algorithm 3des;
		hash_algorithm sha1;
		dh_group 2;
		lifetime time 28800 secs;
	}
}
					
sainfo subnet 192.168.10.0/24 any subnet 192.168.0.0/21 any
{
	remoteid 1;
	encryption_algorithm 3des;
	authentication_algorithm hmac_sha1;
	pfs_group 2;
	lifetime time 3600 secs;
	compression_algorithm deflate;
}
					
sainfo   subnet x.x.x.x/27 any
{
	remoteid 1;
	encryption_algorithm 3des;
	authentication_algorithm hmac_sha1;
	pfs_group 2;
	lifetime time 3600 secs;
	compression_algorithm deflate;
}