# $Id: vals.conf.in,v 1.5 2007/07/18 08:37:20 mk Exp $
setval {
### Directory Settings ###
	# Preshared key file directory : specify if you want to use preshared keys
	PSKDIR		"/tmp/racoon2/psk";	

	# Cert file directory : specify if you want to use certs
	CERTDIR		"/tmp/racoon2/cert";	

### ID Settings ###
	# your FQDN : specify if you want to use FQDN as your ID
	MY_FQDN	"C=ca, ST=Ontario, O=Libreswan, OU=Test Department, CN=west.testing.libreswan.org, E=testing.libreswan.org";

	# Peer's FQDN : specify if you want to use FQDN as peer's ID	
	PEERS_FQDN	"C=ca, ST=Ontario, O=Libreswan, OU=Test Department, CN=east.testing.libreswan.org, E=testing.libreswan.org";

### Preshared Key Setting ###
	# Preshared Key file name
	# You can generate it by pskgen.
	PRESHRD_KEY	"test.psk";		

### Certicate Setting ###
	# Set following parameters if you use certificates in IKE negotiation
	# and _SET_ 'kmp_auth_method { rsasig; };' in each remote{} section of 
	# tunnel_ike{_natt}.conf/transport_ike.conf files.
	# For more information, please see USAGE.
	#
	# Your Public Key file name
	MY_PUB_KEY      "/testing/baseconfigs/all/etc/ipsec.d/certs/west.crt";

	# Your Private Key file name
	MY_PRI_KEY      "/testing/baseconfigs/all/etc/ipsec.d/private/west.key";

	# Peer's Public Key file name
	PEERS_PUB_KEY   "/testing/baseconfigs/all/etc/ipsec.d/certs/east.crt";

### Transport Mode Settings ###
	# Your IP Address
	MY_IPADDRESS	"192.1.2.23";

	# Peer's IP Address
	PEERS_IPADDRESS	"192.1.2.45";

### Tunnel Mode Settings ###
	# Your Network Address or Host Address
	MY_NET		"192.0.2.0/24";
	# Peer's Network Address or Host Address
	PEERS_NET	"192.0.1.0/24";

	# Your SGW Address
	MY_GWADDRESS	"192.1.2.45";

	# Peer's SGW Address
	# You don't need to specify if you're IKE responder 
	# talking to an IKE initiator behind NAT.
	PEERS_GWADDRESS	"192.1.2.23";

### KINK ###
	# Kerberos5 principal 
	PEERS_PRINCIPAL	"kink/yourname.example.com@EXAMPLE.COM"; 
};