summaryrefslogtreecommitdiffstats
diff options
context:
space:
mode:
Diffstat
-rw-r--r--meta-networking/recipes-support/ipsec-tools/ipsec-tools/racoon.conf.sample40
-rw-r--r--meta-networking/recipes-support/ipsec-tools/ipsec-tools_0.8.2.bb7
2 files changed, 47 insertions, 0 deletions
diff --git a/meta-networking/recipes-support/ipsec-tools/ipsec-tools/racoon.conf.sample b/meta-networking/recipes-support/ipsec-tools/ipsec-tools/racoon.conf.sample
new file mode 100644
index 0000000000..2948a4a35b
--- /dev/null
+++ b/meta-networking/recipes-support/ipsec-tools/ipsec-tools/racoon.conf.sample
@@ -0,0 +1,40 @@
1#
2# NOTE: This file will not be used if you use racoon-tool(8) to manage your
3# IPsec connections. racoon-tool will process racoon-tool.conf(5) and
4# generate a configuration (/var/lib/racoon/racoon.conf) and use it, instead
5# of this file.
6#
7# Simple racoon.conf
8#
9#
10# Please look in /usr/share/doc/racoon/examples for
11# examples that come with the source.
12#
13# Please read racoon.conf(5) for details, and alsoread setkey(8).
14#
15#
16# Also read the Linux IPSEC Howto up at
17# http://www.ipsec-howto.org/t1.html
18#
19log notify;
20path pre_shared_key "/etc/racoon/psk.txt";
21path certificate "/etc/racoon/certs";
22
23#remote 172.31.1.1 {
24# exchange_mode main,aggressive;
25# proposal {
26# encryption_algorithm 3des;
27# hash_algorithm sha1;
28# authentication_method pre_shared_key;
29# dh_group modp1024;
30# }
31# generate_policy off;
32#}
33#
34#sainfo address 192.168.203.10[any] any address 192.168.22.0/24[any] any {
35# pfs_group modp768;
36# encryption_algorithm 3des;
37# authentication_algorithm hmac_md5;
38# compression_algorithm deflate;
39#}
40
diff --git a/meta-networking/recipes-support/ipsec-tools/ipsec-tools_0.8.2.bb b/meta-networking/recipes-support/ipsec-tools/ipsec-tools_0.8.2.bb
index 8cc55ef8a3..7519d8376b 100644
--- a/meta-networking/recipes-support/ipsec-tools/ipsec-tools_0.8.2.bb
+++ b/meta-networking/recipes-support/ipsec-tools/ipsec-tools_0.8.2.bb
@@ -15,6 +15,7 @@ SRC_URI = "ftp://ftp.netbsd.org/pub/NetBSD/misc/ipsec-tools/0.8/ipsec-tools-${PV
15 file://racoon-check-invalid-ivm.patch \ 15 file://racoon-check-invalid-ivm.patch \
16 file://glibc-2.20.patch \ 16 file://glibc-2.20.patch \
17 file://racoon-Resend-UPDATE-message-when-received-EINTR-message.patch \ 17 file://racoon-Resend-UPDATE-message-when-received-EINTR-message.patch \
18 file://racoon.conf.sample \
18 " 19 "
19SRC_URI[md5sum] = "d53ec14a0a3ece64e09e5e34b3350b41" 20SRC_URI[md5sum] = "d53ec14a0a3ece64e09e5e34b3350b41"
20SRC_URI[sha256sum] = "8eb6b38716e2f3a8a72f1f549c9444c2bc28d52c9536792690564c74fe722f2d" 21SRC_URI[sha256sum] = "8eb6b38716e2f3a8a72f1f549c9444c2bc28d52c9536792690564c74fe722f2d"
@@ -54,6 +55,7 @@ EXTRA_OECONF = "--with-kernel-headers=${STAGING_INCDIR} \
54 --enable-shared \ 55 --enable-shared \
55 --enable-dpd \ 56 --enable-dpd \
56 --enable-natt=yes \ 57 --enable-natt=yes \
58 --sysconfdir=${sysconfdir}/racoon \
57 ${@base_contains('DISTRO_FEATURES', 'ipv6', '--enable-ipv6=yes', '', d)}" 59 ${@base_contains('DISTRO_FEATURES', 'ipv6', '--enable-ipv6=yes', '', d)}"
58 60
59# See http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530527 61# See http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=530527
@@ -62,3 +64,8 @@ CFLAGS += "-fno-strict-aliasing"
62PACKAGECONFIG ??= "" 64PACKAGECONFIG ??= ""
63PACKAGECONFIG[pam] = "--with-libpam,--without-libpam,libpam," 65PACKAGECONFIG[pam] = "--with-libpam,--without-libpam,libpam,"
64PACKAGECONFIG[selinux] = "--enable-security-context,--disable-security-context,libselinux," 66PACKAGECONFIG[selinux] = "--enable-security-context,--disable-security-context,libselinux,"
67
68do_install_append() {
69 install -d ${D}${sysconfdir}/racoon
70 install -m 0644 ${WORKDIR}/racoon.conf.sample ${D}${sysconfdir}/racoon/racoon.conf
71}
generated by cgit v1.2.3-54-g00ecf (git 2.39.0) at 2025-11-27 11:36:14 +0000