File:
[ELWIX - Embedded LightWeight unIX -] /
elwix /
config /
etc /
default /
racoon /
racoon.conf.sample-gssapi
Revision
1.1.1.1 (vendor branch):
download - view:
text,
annotated -
select for diffs -
revision graph
Tue Jul 5 23:43:00 2011 UTC (13 years, 5 months ago) by
misho
Branches:
misho,
MAIN
CVS tags:
start,
elwix2_3,
elwix2_2,
elwix2_1,
elwix2_0,
elwix1_9_mips,
elwix1_9,
elwix1_8,
elwix1_7,
elwix1_6,
elwix1_5,
elwix1_4,
Patch1,
HEAD,
ELWIX2_2p0,
ELWIX2_1,
ELWIX2_0,
ELWIX1_9,
ELWIX1_8,
ELWIX1_7,
ELWIX1_6,
ELWIX1_5
ELWIX project
# $KAME: racoon.conf.sample-gssapi,v 1.5 2001/08/16 06:33:40 itojun Exp $
# sample configuration for GSSAPI authentication (basically, Kerberos).
# doc/README.gssapi gives some idea on how to configure it.
# TODO: more documentation.
#listen {
# strict_address;
#}
# Uncomment the following for GSS-API to work with older versions of
# racoon that (incorrectly) used ISO-Latin-1 encoding for the GSS-API
# identifier attribute.
#gss_id_enc latin1;
remote anonymous {
exchange_mode main;
lifetime time 24 hour;
proposal {
encryption_algorithm 3des;
hash_algorithm sha1;
authentication_method gssapi_krb;
# The default GSS-API ID is "host/hostname", where
# hostname is the output of the hostname(1) command.
# You probably want this to match your system's host
# principal. ktutil(8)'s "list" command will list the
# principals in your system's keytab. If you need to,
# you can change the GSS-API ID here.
#gss_id "host/some.host.name";
dh_group 1;
}
}
sainfo anonymous {
lifetime time 2 hour;
encryption_algorithm rijndael, 3des;
authentication_algorithm hmac_sha1, hmac_md5;
compression_algorithm deflate;
}
FreeBSD-CVSweb <freebsd-cvsweb@FreeBSD.org>
![[BACK]](/icons/cvsweb/back.gif){kind=icon}
Return to racoon.conf.sample-gssapi CVS log ![[TXT]](/icons/cvsweb/text.gif){kind=icon}
![[DIR]](/icons/cvsweb/dir.gif){kind=icon}
Up to [ELWIX - Embedded LightWeight unIX -] / elwix / config / etc / default / racoon