Here is my racoon configuration (remote IP obfuscated) :
$ cat /etc/racoon/racoon.conf
privsep
{
user "racoon";
group "racoon";
}
log notify;
path certificate "/etc/racoon/certs";
path script "/etc/racoon/scripts";
remote 1.2.3.4 {
exchange_mode main;
nat_traversal on;
certificate_type plain_rsa "/etc/racoon/local-key/sdeziel-laptop";
peers_certfile plain_rsa "/etc/racoon/remote-key/sdeziel-fw.pub";
peers_identifier fqdn "sdeziel-fw";
my_identifier fqdn "sdeziel-laptop";
verify_cert off;
proposal {
encryption_algorithm aes;
hash_algorithm sha1;
authentication_method rsasig;
dh_group modp2048;
}
}
sainfo anonymous {
pfs_group modp2048;
encryption_algorithm aes;
authentication_algorithm hmac_sha1;
compression_algorithm deflate;
}
Note that the remote peer receives the SA deletion message even if
racoon crashes.
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to ipsec-tools in Ubuntu.
https://bugs.launchpad.net/bugs/913935
Title:
racoon segfaults when flusing SPD
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/ipsec-tools/+bug/913935/+subscriptions
--
Ubuntu-server-bugs mailing list
Ubuntu-server-bugs@lists.ubuntu.com
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
