diff options
| author | Hans-Joerg Hoexer <hshoexer@cvs.openbsd.org> | 2006-09-14 15:10:44 +0000 |
|---|---|---|
| committer | Hans-Joerg Hoexer <hshoexer@cvs.openbsd.org> | 2006-09-14 15:10:44 +0000 |
| commit | 55ccc7cdbf7ad4a5eef3d387c4aa2baa3bf7f8de (patch) | |
| tree | e97eb4782b53a77d284cd40b23ad3a94165e4228 /etc/ipsec.conf | |
| parent | 2cbb697dc18209b37f090052d2665604a415aba8 (diff) | |
a more useable example; fix comments; ok jmc@
Diffstat (limited to 'etc/ipsec.conf')
| -rw-r--r-- | etc/ipsec.conf | 12 |
1 files changed, 6 insertions, 6 deletions
diff --git a/etc/ipsec.conf b/etc/ipsec.conf index 76d384d2804..c0b27d1163a 100644 --- a/etc/ipsec.conf +++ b/etc/ipsec.conf @@ -1,4 +1,4 @@ -# $OpenBSD: ipsec.conf,v 1.4 2006/08/24 12:47:37 hshoexer Exp $ +# $OpenBSD: ipsec.conf,v 1.5 2006/09/14 15:10:43 hshoexer Exp $ # # See ipsec.conf(5) for syntax and examples. @@ -17,10 +17,10 @@ # # The first rule sets up the flow; the second sets up the SA. As default # transforms, ipsecctl(8) will use hmac-sha2-256 for authentication -# and aesctr for encryption. hmac-sha2-256 uses a 256-bit key; aesctr -# a 160-bit key. +# and aes for encryption. hmac-sha2-256 uses a 256-bit key; aes +# a 128-bit key. #flow esp from 192.168.7.0/24 to 192.168.8.0/24 peer 192.168.3.2 -#esp from 192.168.3.1 to 192.168.3.2 spi 0xdeadbeef:0xbeefdead \ -# authkey 0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa:0xaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa \ -# enckey 0xeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee:0xeeeeeeeeeeeeeeeeeeeeeeeeeeeeeeee +#esp from 192.168.3.1 to 192.168.3.2 spi 0xabd9da39:0xc9dbb83d \ +# authkey 0x54f79f479a32814347bb768d3e01b2b58e49ce674ec6e2d327b63408c56ef4e8:0x7f48ee352c626cdc2a731b9d90bd63e29db2a9c683044b70b2f4441521b622d6 \ +# enckey 0xb341aa065c3850edd6a61e150d6a5fd3:0xf7795f6bdd697a43a4d28dcf1b79062d |