# /etc/ipsec.conf - Libreswan IPsec configuration file

# This file:  /usr/local/share/doc/libreswan/ipsec.conf-sample
#
# Manual:     ipsec.conf.5


version	2.0	# conforms to second version of ipsec.conf specification

# basic configuration
config setup
	# plutodebug / klipsdebug = "all", "none" or a combation from below:
	# "raw crypt parsing emitting control klips pfkey natt x509 private"
	# eg:
	# plutodebug="control parsing"
	#
	# Only enable klipsdebug=all if you are a developer
	#
	# NAT-TRAVERSAL support, see README.NAT-Traversal
	# nat_traversal=yes
	# virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
	protostack=nostack
	plutostderrlog=/tmp/pluto.log
	plutorestartoncrash=false
	nhelpers=0

# Add connections here

conn catfish--cassidy
	# Left security gateway, subnet behind it, nexthop toward right.
	left=205.150.200.251
	leftnexthop=205.150.200.241
	# RSA 2192 bits   win2kcatfish   Mon Aug 15 00:53:52 2005
	leftrsasigkey=0sAQNxG2/xIgkfx+NQVluPqUCPphWbi5GEQFYCwJ+tX7gSq7Et3AoR5Vx9rxLZXOX6YClip04h6mcTY0BlB1L9DHYhBqLEiQ+JHg3PWEEMFu+++E545npzxfXqUUnHG/LTeeXntdDemlgWSB+LBkd/eMrxp112WREcpZzeDZULUP3cVIyXovJh1quIAjbconeMy3RPvrDmCQjBcftoIro7Lb6mSsfME8GgilvDo0AaY9WTI0zLygE+iw/Hcl6wr0nJ1WKRGeDo9nioMIuKK/Y3kAAZaLlsfop0tIfQ5EbyS9klpu9Rk/5URq3KNEeOBpNH+OamwA1cOABVtqMNzUW52xEWKfc3HVLRsfpQEpfO342iHgdZ
	# Right security gateway, subnet behind it, nexthop toward left.
	right=205.150.200.252
	rightnexthop=205.150.200.241
	# RSA 2048 bits   cassidy   Mon Jul  2 22:07:29 2001
	rightrsasigkey=0sAQO05ofzFZvwiKLSLgV7blktNvBMNrl5w1vlruBxUES2B27u24vhHdEUrPPMqz+JcYQ54xnnlVdw6PNrSV4+DaCAKm2sTBN6IiYGFqlGozzuhG7F3NVzTLSgUIceDkmexuCxnREkyXIw8EOpbaWQOuJjZYnspWd77rYewhu+u8j4E4+ZNPjMbdqAXciKga/tbADLKFs8w94142R0tQ4sceu5vI5CvFeR8x2x0LxALUPZ0APyA51Z6tOuXOeTfSTyueKLoB0tSuzJOPX+7nk+Ofc/ib2wGWNU2GbJpG5IPgs40P0TQZPNwdZNDwtmolY9xWkX9n3M5gyLMljfWPxmz1jt
	# To authorize this connection, but not actually start it, 
	# at startup, uncomment this.
	#auto=add