#
# $Id: isakmpd-road.conf.2,v 1.1 2003/04/01 20:10:46 raptor Exp $
#
# isakmpd-road.conf.2 v3.0 - Sample IKE configuration
# Copyright (c) 2003 by Raptor <raptor@0xdeadbeef.info>
#
# Configuration template for the client (road) gateway of an OpenBSD 
# road warrior IPSec VPN, based on ISAKMP. Tested on OpenBSD 3.2.
#
# Change it to fit your local configuration.
#

[General]
# Local client (road) has dynamic IP addressing
Retransmits=		5
Exchange-max-time=	120
Check-interval=		1

[Phase 1]
# Remote server is 1.1.1.1 (core)
1.1.1.1=		core

[Phase 2]
# Set up the connection between client and server
Connections=		core-road

[core]
# Phase 1: exchange authentication informations
Phase=			1
Transport=		udp
Address=		1.1.1.1
Configuration=		Default-main-mode
Authentication=		thisisatest

[core-road]
# Phase 2: establish the connection
Phase=			2
ISAKMP-peer=		core
Configuration=		Default-quick-mode
Remote-ID=		Net-core

[Net-core]
# Remote net addressing
ID-type=		IPV4_ADDR_SUBNET
Network=		192.168.1.0
Netmask=		255.255.255.0

[Default-main-mode]
# Declare our Main Mode of operation
DOI=			IPSEC
EXCHANGE_TYPE=		ID_PROT
Transforms=		3DES-SHA

[Default-quick-mode]
# Declare our Quick Mode of operation
DOI=			IPSEC
EXCHANGE_TYPE=		QUICK_MODE
Suites=			QM-ESP-3DES-SHA-PFS-SUITE