Add a way to manually manage racoon.conf, e.g. to handle separate tunnels with

a shared peer endpoint (#159343)
author: Miloslav Trmac <mitr@volny.cz> 2006-11-15 01:37:02 +0000
committer: Miloslav Trmac <mitr@volny.cz> 2006-11-15 01:37:02 +0000
commit: 4137cc5bf1430055f65a867b7b3b2245fec19f52 (patch)
tree: 09f7ccc425815b6dd27788f07db9c239ffa1719b /sysconfig.txt
parent: 10fa5cbefcffc30ddb589195dffb8a1114734b13 (diff)
download: initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.tar
initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.tar.gz
initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.tar.bz2
initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.tar.xz
initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.zip
1 files changed, 4 insertions, 0 deletions
diff --git a/sysconfig.txt b/sysconfig.txt
index 82a6eb2f..571dd1dc 100644
--- a/sysconfig.txt
+++ b/sysconfig.txt
@@ -864,6 +864,10 @@ Files in /etc/sysconfig/network-scripts/
        IKE_DNSSEC=retrieve peer public certs from DNS
      (otherwise uses certificate information sent over IKE)
 
+     To manage the racoon configuration manually (e.g. when there is more than
+     one IPSEC configuration with the same DST), set KEYING=automatic and leave
+     all IKE_* parameters unspecified.
+
    Usage of AH or ESP may be disabled by setting {AH,ESP}_PROTO to "none".
 
   Bonding-specific items
author	Miloslav Trmac <mitr@volny.cz>	2006-11-15 01:37:02 +0000
committer	Miloslav Trmac <mitr@volny.cz>	2006-11-15 01:37:02 +0000
commit	4137cc5bf1430055f65a867b7b3b2245fec19f52 (patch)
tree	09f7ccc425815b6dd27788f07db9c239ffa1719b /sysconfig.txt
parent	10fa5cbefcffc30ddb589195dffb8a1114734b13 (diff)
download	initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.tar initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.tar.gz initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.tar.bz2 initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.tar.xz initscripts-4137cc5bf1430055f65a867b7b3b2245fec19f52.zip