Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

ipsec.conf(5) [netbsd man page]

IPSEC.CONF(5)						      BSD File Formats Manual						     IPSEC.CONF(5)

NAME

     ipsec.conf -- static IPsec configuration read at system startup

DESCRIPTION

     The ipsec.conf file is read at system startup time if ipsec is set to ``yes'' in rc.conf(5).  setkey(8) is run with the -f option to load in
     IPsec manual keys and policies from /etc/ipsec.conf at boot time, before any interfaces are configured.

     Please see the setkey(8) manpage for all the commands available.

FILES

     /etc/ipsec.conf  The file ipsec.conf resides in /etc.

SEE ALSO

     ipsec(4), setkey(8)

HISTORY

     The ipsec.conf file appeared in NetBSD 1.5.

BSD
								 February 19, 2001							       BSD

Check Out this Related Man Page

_STACKMANAGER(8)						Executable programs						  _STACKMANAGER(8)

NAME

       ipsec__stackmanager - internal script to bring up kernel components for Libreswan

SYNOPSIS

       ipsec _stackmanager start

       ipsec _stackmanager stop

DESCRIPTION

       ipsec _stackmanager is called from within the init sub-system (systemd, upstart, sysv initscripts) to bring up the Libreswan kernel
       component as configured via the protostack= option in the ipsec.confi configuration file.

       This involves loading and optionally unloading of the required kernel modules. Because the Linux kernel cannot autodetect most crypto
       related drivers on-demand, _stackmanager handles loading the hardware random number (RNG) device drivers, OpenBSD/FreeBSD Cryptographic
       Framework (OCF) drivers, CryptoAPI drivers, and the modules for the specific stack (Linux NETKEY/XFM or KLIPS/MAST). Probing for OCF
       supported hardware is not supported - those modules must be loaded by the system before the start of the Libreswan sub system.

SEE ALSO

       ip(8), ipsec_tncfg(8), ipsec.conf(5), ipsec_addconn(8), pluto(8)

HISTORY

       This script was introduced in Libreswan. On the older Openswan systems, this functionality was split over various script files such as
       ipsec _startnetkey, ipsec _startklips, ipsec _realsetup and ipsec setup. Man page written for the Libreswan project
       <http://www.libreswan.org/> by Paul Wouters.

AUTHOR

       Paul Wouters
	   placeholder to suppress warning

libreswan							    12/16/2012							  _STACKMANAGER(8)
Man Page

2 More Discussions You Might Find Interesting

1. Cybersecurity

IPSec - VPN using shared key

Hello! I have some trouble trying to configure a VPN with two gateways. One of them uses IPSec with a single key, 256bits length, specified in /etc/ipsec.secrets. As FreeSwan manual page says, if i put esp=3des-md5-96, will be used a "64bit IV key (internally generated), a 192bit 3des ekey and a... (3 Replies)
Discussion started by: eNTer
3 Replies

2. IP Networking

How to establish site to site vpn - Linux machine and cisco asa?

Hi, I am trying to establish vpn between my linux server and cisco asa at client side. I installed openswan on my cent os. Linux Server eth0 - 182.2.29.10 Gateway - 182.2.29.1 eth1 - 192.9.200.75 I have simple IPtables Like WAN="eth0" LAN="eth1" (0 Replies)
Discussion started by: ashokvpp
0 Replies