How to set multiple proposals with Racoon

Intro

Here a racoon configuration example for multiple proposals.

Rules

remote anonymous {
        exchange_mode main;
        my_identifier asn1dn;
        peers_identifier asn1dn;
        certificate_type x509 "newcert.pem" "privkey.pem";
        ca_type x509 "cacert.pem";
        passive on;
        generate_policy unique;
        ike_frag on;
        nat_traversal off;
        dpd_delay 30;
        proposal_check claim;
        lifetime time 24 hours;
        verify_identifier on;
        proposal {
                encryption_algorithm aes 256;
                hash_algorithm sha1;
                authentication_method rsasig ;
                dh_group 15;
        }
        proposal {
                encryption_algorithm 3des;
                hash_algorithm sha1;
                authentication_method rsasig ;
                dh_group 2;
        }
}
					
Licence Creative Commons
This website http://shebangthedolphins.net is licensed to the public under a licence Creative Commons Attribution licence.
Contact :