OpenBSD Configuration

Begin by checking the prerequisites.

Configuration Files

The two main configuration files for isakmpd are isakmpd.conf and isakmpd.policy, both found in /etc/isakmpd on your OpenBSD machine. Here is lots of different isakmpd.conf files and isakmpd.policy files. Please email me your configuration files if they differ lots from the ones below (so the we can get more configfiles to learn from).

isakmpd.conf

isakmpd.conf with pre-shared secrets configuration that works with PGPnet
isakmpd.conf with agressive mode and virtual ID configuration that works with PGPnet
isakmpd.conf with virtual ID and x509 certificate authentication that works with PGPnet
isakmpd.conf with pre-shared secrets that works with Safenets Soft-PK
isakmpd.conf with x509 authentication that works with Ssh Sentinel

isakmpd.policy

simple isakmpd.policy that allows all configurations as long as they are encrypted (esp) and has the correct authentication.

OpenBSD

IPsec Clients

Troubleshooting

These pages are out of date and presented here for historical purposes only.

OpenBSD Configuration

Configuration Files

isakmpd.conf

isakmpd.policy