NAME
SYNOPSIS
k -words
k -words
k -words
k -words
k -words
DESCRIPTION
speaks the IKE
key management protocol,
to establish security associations with other hosts.
The SPD
in the kernel usually triggers
usually sends all informational messages, warnings and error messages to
syslogd(8)
with the facility
and the priority
Debugging messages are sent with the priority
You should configure
syslog.conf(5)
appropriately to see these messages.
- 4
- 6
Specify the default address family for the sockets.
- B
Install SA(s) from the file which is specified in
racoon.conf(5)
- d
Increase the debug level.
Multiple
arguments will increase the debug level even more.
- F
Run
in the foreground.
- configfile
Use
as the configuration file instead of the default.
- L
Include
in all messages.
- logfile
Use
as the logging file instead of
syslogd(8)
- isakmp-natt-port
Use
for NAT-Traversal port-floating.
The default is 4500.
- isakmp-port
Listen to the ISAKMP key exchange on port
instead of the default port number, 500.
- v
This flag causes the packet dump be more verbose, with higher
debugging level.
assumes the presence of the kernel random number device
rnd(4)
at
RETURN VALUES
The command exits with 0 on success, and non-zero on errors.
FILES
- /etc/racoon/racoon.conf
default configuration file.
SEE ALSO
HISTORY
The
command first appeared in the
Yokogawa IPsec implementation.
SECURITY CONSIDERATIONS
The use of IKE phase 1 aggressive mode is not recommended,
as described in