path pre_shared_key "/etc/racoon/psk.txt" ;

listen {
        isakmp %%MGMNT_ADDR%%;
}
 
remote %%MASTER_ADDR%%  {   
        exchange_mode main;
        my_identifier address %%MGMNT_ADDR%%;
        peers_identifier address %%MASTER_ADDR%%;
        lifetime time 24 hour;
        passive off;
        nat_traversal off;
        proposal {  
                encryption_algorithm 3des;
                hash_algorithm sha1;
                authentication_method pre_shared_key;
                dh_group 2;
        }

}
#sainfo address [doesntwork] any address [doesntwork] any  {
sainfo anonymous {
        encryption_algorithm 3des;
        authentication_algorithm hmac_sha1;
        compression_algorithm deflate;
        pfs_group modp768;
        lifetime time 12 hour ;
}

log notify;