#!/usr/sbin/setkey -f

# NOTE: Do not use this file if you use racoon with racoon-tool
# utility. racoon-tool will setup SAs and SPDs automatically using
# /etc/racoon/racoon-tool.conf configuration.
# 

## Flush the SAD and SPD
#
# flush;
# spdflush;

## Some sample SPDs for use racoon
#
# spdadd 10.10.100.1 10.10.100.2 any -P out ipsec
#    esp/transport//require;
#                      
# spdadd 10.10.100.2 10.10.100.1 any -P in ipsec
#    esp/transport//require;
#

flush;
spdflush;

# outbound
spdadd 10.3.5.103 69.9.189.182/32 any
    -P out ipsec esp/tunnel/10.3.5.103-10.3.253.1/require;

# inbound
spdadd 69.9.189.182/32 10.3.5.103 any
    -P in ipsec esp/tunnel/10.3.253.1-10.3.5.103/require;