Differences between revisions 1 and 2
Revision 1 as of 2007-07-12 12:46:59
Size: 1323
Editor: mohacsi
Comment:
Revision 2 as of 2008-04-10 15:29:37
Size: 1327
Editor: localhost
Comment: converted to 1.6 markup
Deletions are marked like this. Additions are marked like this.
Line 2: Line 2:
[[TableOfContents]] <<TableOfContents>>
Line 9: Line 9:
|| [http://www.kame.net racoon] || included || [http://www.freshports.org/search.php?query=racoon *BSD], other? || || [[http://www.kame.net|racoon]] || included || [[http://www.freshports.org/search.php?query=racoon|*BSD]], other? ||

Contents

  1. racoon
    1. Availability and IPv6 support
    2. Description
    3. Comments
    4. Usage information
    5. Categories
    6. Source of information

racoon

Availability and IPv6 support

Name

IPv6 support

Supported operating systems

racoon

included

*BSD, other?

Description

racoon speaks IKE (ISAKMP/Oakley) key management protocol, to establish security association with other hosts. Known issues: - Too many use of dynamic memory allocation, which leads to memory leak. - Non-threaded implementation. Simultaneous key negotiation performance should be improved. - Cannot negotiate keys for per-socket policy. - Cryptic configuration syntax - blame IPsec specification too... - Needs more documentation. Design choice, not a bug: - racoon negotiate IPsec keys only. It does not negotiate policy. Policy must be configured into the kernel separately from racoon. If you want to support roaming clients, you may need to have a mechanism to put policy for the roaming client after phase 1 finishes. Bug reports should be sent to http://orange.kame.net/dev/send-pr.html.

Comments

Usage information

Categories

CategoryApps, CategoryAppssysutils

Source of information

FreeBSD port collection

Campus6: Apps_racoon (last edited 2008-04-10 15:29:37 by localhost)