Here a racoon configuration example for multiple proposals.
Fr
remote anonymous {
exchange_mode main;
my_identifier asn1dn;
peers_identifier asn1dn;
certificate_type x509 "newcert.pem" "privkey.pem";
ca_type x509 "cacert.pem";
passive on;
generate_policy unique;
ike_frag on;
nat_traversal off;
dpd_delay 30;
proposal_check claim;
lifetime time 24 hours;
verify_identifier on;
proposal {
encryption_algorithm aes 256;
hash_algorithm sha1;
authentication_method rsasig ;
dh_group 15;
}
proposal {
encryption_algorithm 3des;
hash_algorithm sha1;
authentication_method rsasig ;
dh_group 2;
}
}
Contact :
