IKE (ISAKMP/Oakley) key management daemon
Syntax:
racoon [-BdFv46] [-f configfile] [-l logfile] [-p isakmp-port]
Runs on:
QNX Neutrino, Linux, Microsoft Windows
Options:
- -4 or -6
- Specifies the default address family for the sockets.
- -B
- Install security association(s) from the file that is specified in
/etc/racoon/racoon.conf.
- -d
- Increase the debug level. Each additional d increases the debug
level.
- -F
- Run racoon in the foreground.
- -f configfile
- Use configfile as the configuration file instead of the default.
The default configuration file is /etc/racoon/racoon.conf.
- -l logfile
- Use logfile as the logging file instead of syslogd.
- -p isakmp-port
- Listen to ISAKMP key exchange on port isakmp-port instead of the
default port number, 500.
- -v
- Specifying this option causes the packet dump to be more verbose, with a higher
debugging level.
Description:
The racoon daemon speaks IKE (ISAKMP/Oakley) key management
protocol, to establish security association with other hosts.
The SPD (Security Policy Database) in the kernel usually triggers to
start racoon.
Note:
Because of encryption export laws, racoon
isn't provided in regular OS bundles.
QNX Software Systems must report to the US
government, identifying customers who have access to the encryption
technology contained in the racoon daemon. If you
wish to have access to this binary, you must contact your
QNX sales representative, who can provide download access once approved.
Examples:
For examples showing how to configure racoon directives and statements, see
/etc/racoon.conf.
Files:
- /etc/racoon/racoon.conf
- Default configuration file for racoon
Exit status:
- 0
- Success.
- > 0
- An error occurred.
Contributing author:
OpenSSL Project