version 1.9, 2000/01/13 05:19:10 |
version 1.10, 2000/04/22 01:57:17 |
|
|
|
|
# Crypto options and keys, note that key/iv lengths need to correspond |
# Crypto options and keys, note that key/iv lengths need to correspond |
# to the selected encryption and authentication algorithms. |
# to the selected encryption and authentication algorithms. |
ENC=des |
ENC=3des |
AUTH=sha1 |
AUTH=sha1 |
SPI_OUT=1000 |
SPI_OUT=1000 |
SPI_IN=1001 |
SPI_IN=1001 |
KEY=2ea140ac3911cb27 |
KEYFILE=/etc/esp-enc-key |
AUTHKEY=176cc284bc1631afbd1468fbe976fa729fcb4321 |
AUTHKEYFILE=/etc/esp-auth-key |
IV=c4b279f1a9bcd849 |
|
|
|
############################################################################# |
############################################################################# |
############# -- NO CHANGES SHOULD BE NEEDED BELOW THIS LINE -- ############# |
############# -- NO CHANGES SHOULD BE NEEDED BELOW THIS LINE -- ############# |
|
|
|
|
$DEBUG $ipsecadm new esp -src $GW_LOCAL -dst $GW_PEER \ |
$DEBUG $ipsecadm new esp -src $GW_LOCAL -dst $GW_PEER \ |
-forcetunnel -spi $SPI_OUT -enc $ENC -auth $AUTH \ |
-forcetunnel -spi $SPI_OUT -enc $ENC -auth $AUTH \ |
-key $KEY -authkey $AUTHKEY |
-keyfile $KEYFILE -authkeyfile $AUTHKEYFILE |
|
|
$DEBUG $ipsecadm new esp -src $GW_PEER -dst $GW_LOCAL \ |
$DEBUG $ipsecadm new esp -src $GW_PEER -dst $GW_LOCAL \ |
-forcetunnel -spi $SPI_IN -enc $ENC -auth $AUTH \ |
-forcetunnel -spi $SPI_IN -enc $ENC -auth $AUTH \ |
-key $KEY -authkey $AUTHKEY |
-keyfile $KEYFILE -authkeyfile $AUTHKEYFILE |
|
|
# |
# |
# Create the flows |
# Create the flows |