d/freebsd-dev
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix spelling of Camellia algorithm. While here, replace blank lines

Browse Source 
between examples with actual .Pp breaks.

PR:		192067
Submitted by:	dmitry2004@yandex.ru
MFC after:	1 week
This commit is contained in:
Warren Block 2014-07-25 17:09:48 +00:00
parent dcfbe2c021
commit c14beb6822
Notes: svn2git 2020-12-20 02:59:44 +00:00 
svn path=/head/; revision=269091
1 changed files with 10 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

21
sbin/setkey/setkey.8
View File

@ -29,7 +29,7 @@
.\" .\"
.\" $FreeBSD$ .\" $FreeBSD$
.\" .\"
.Dd May 13, 2006 .Dd July 25, 2014
.Dt SETKEY 8 .Dt SETKEY 8
.Os .Os
.\" .\"
@ -514,7 +514,7 @@ the SA from the key exchange daemon.
A value of A value of
.Li default .Li default
tells the kernel to use the system wide default protocol tells the kernel to use the system wide default protocol
e.g.\& the one from the e.g.,\& the one from the
.Li esp_trans_deflev .Li esp_trans_deflev
sysctl variable, when the kernel processes the packet. sysctl variable, when the kernel processes the packet.
A value of A value of
@ -627,7 +627,7 @@ des-deriv 64 ipsec-ciph-des-derived-01
3des-deriv 192 no document 3des-deriv 192 no document
rijndael-cbc 128/192/256 rfc3602 rijndael-cbc 128/192/256 rfc3602
aes-ctr 160/224/288 draft-ietf-ipsec-ciph-aes-ctr-03 aes-ctr 160/224/288 draft-ietf-ipsec-ciph-aes-ctr-03
camllia-cbc 128/192/256 rfc4312 camellia-cbc 128/192/256 rfc4312
.Ed .Ed
.Pp .Pp
Note that the first 128/192/256 bits of a key for Note that the first 128/192/256 bits of a key for
@ -656,47 +656,46 @@ des-cbc encryption algorithm.
.Bd -literal -offset indent .Bd -literal -offset indent
add 3ffe:501:4819::1 3ffe:501:481d::1 esp 123457 add 3ffe:501:4819::1 3ffe:501:481d::1 esp 123457
-E des-cbc 0x3ffe05014819ffff ; -E des-cbc 0x3ffe05014819ffff ;
.Pp
.Ed .Ed
.\" .\"
Add an authentication SA between two FQDN specified hosts: Add an authentication SA between two FQDN specified hosts:
.Bd -literal -offset indent .Bd -literal -offset indent
add -6 myhost.example.com yourhost.example.com ah 123456 add -6 myhost.example.com yourhost.example.com ah 123456
-A hmac-sha1 "AH SA configuration!" ; -A hmac-sha1 "AH SA configuration!" ;
.Pp
.Ed .Ed
Use both ESP and AH between two numerically specified hosts: Use both ESP and AH between two numerically specified hosts:
.Bd -literal -offset indent .Bd -literal -offset indent
add 10.0.11.41 10.0.11.33 esp 0x10001 add 10.0.11.41 10.0.11.33 esp 0x10001
-E des-cbc 0x3ffe05014819ffff -E des-cbc 0x3ffe05014819ffff
-A hmac-md5 "authentication!!" ; -A hmac-md5 "authentication!!" ;
.Pp
.Ed .Ed
Get the SA information associated with first example above: Get the SA information associated with first example above:
.Bd -literal -offset indent .Bd -literal -offset indent
get 3ffe:501:4819::1 3ffe:501:481d::1 ah 123456 ; get 3ffe:501:4819::1 3ffe:501:481d::1 ah 123456 ;
.Pp
.Ed .Ed
Flush all entries from the database: Flush all entries from the database:
.Bd -literal -offset indent .Bd -literal -offset indent
flush ; flush ;
.Pp
.Ed .Ed
Dump the ESP entries from the database: Dump the ESP entries from the database:
.Bd -literal -offset indent .Bd -literal -offset indent
dump esp ; dump esp ;
.Pp
.Ed .Ed
Add a security policy between two networks that uses ESP in tunnel mode: Add a security policy between two networks that uses ESP in tunnel mode:
.Bd -literal -offset indent .Bd -literal -offset indent
spdadd 10.0.11.41/32[21] 10.0.11.33/32[any] any spdadd 10.0.11.41/32[21] 10.0.11.33/32[any] any
-P out ipsec esp/tunnel/192.168.0.1-192.168.1.2/require ; -P out ipsec esp/tunnel/192.168.0.1-192.168.1.2/require ;
.Pp
.Ed .Ed
Use TCP MD5 between two numerically specified hosts: Use TCP MD5 between two numerically specified hosts:
.Bd -literal -offset indent .Bd -literal -offset indent
add 10.1.10.34 10.1.10.36 tcp 0x1000 -A tcp-md5 "TCP-MD5 BGP secret" ; add 10.1.10.34 10.1.10.36 tcp 0x1000 -A tcp-md5 "TCP-MD5 BGP secret" ;
.Ed .Ed
.\" .\"
.Sh SEE ALSO .Sh SEE ALSO