miscspell-gate Sdiff usr/src/man/man4/ike.config.4.man

Print this page

10067 Miscellaneous man page typos
Reviewed by: Robert Mustacchi <rm@joyent.com>
Reviewed by: Andy Fiddaman <andy@omniosce.org>
Reviewed by: Volker A. Brandt <vab@bb-c.de>

 119            A list of parameters.
 120 
 121 
 122    File Body Entries
 123        There are four main types of entries:
 124 
 125            o      global parameters
 126 
 127            o      IKE phase 1 transform defaults
 128 
 129            o      IKE rule defaults
 130 
 131            o      IKE rules
 132 
 133 
 134        The global parameter entries are as follows:
 135 
 136        cert_root cert-sel
 137 
 138            The X.509 distinguished name of a certificate that is a trusted
 139            root CA certificate.It must be encoded in a file in the
 140            /etc/inet/ike/publickeys directory. It must have a CRL in
 141            /etc/inet/ike/crls. Multiple cert_root parameters aggregate.
 142 
 143 
 144        cert_trust cert-sel
 145 
 146            Specifies an X.509 distinguished name of a certificate that is
 147            self-signed, or has otherwise been verified as trustworthy for
 148            signing IKE exchanges. It must be encoded in a file in
 149            /etc/inet/ike/publickeys. Multiple cert_trust parameters aggregate.
 150 
 151 
 152        expire_timer integer
 153 
 154            The number of seconds to let a not-yet-complete IKE Phase I (Main
 155            Mode) negotiation linger before deleting it. Default value: 300
 156            seconds.
 157 
 158 
 159        ignore_crls

 119            A list of parameters.
 120 
 121 
 122    File Body Entries
 123        There are four main types of entries:
 124 
 125            o      global parameters
 126 
 127            o      IKE phase 1 transform defaults
 128 
 129            o      IKE rule defaults
 130 
 131            o      IKE rules
 132 
 133 
 134        The global parameter entries are as follows:
 135 
 136        cert_root cert-sel
 137 
 138            The X.509 distinguished name of a certificate that is a trusted
 139            root CA certificate. It must be encoded in a file in the
 140            /etc/inet/ike/publickeys directory. It must have a CRL in
 141            /etc/inet/ike/crls. Multiple cert_root parameters aggregate.
 142 
 143 
 144        cert_trust cert-sel
 145 
 146            Specifies an X.509 distinguished name of a certificate that is
 147            self-signed, or has otherwise been verified as trustworthy for
 148            signing IKE exchanges. It must be encoded in a file in
 149            /etc/inet/ike/publickeys. Multiple cert_trust parameters aggregate.
 150 
 151 
 152        expire_timer integer
 153 
 154            The number of seconds to let a not-yet-complete IKE Phase I (Main
 155            Mode) negotiation linger before deleting it. Default value: 300
 156            seconds.
 157 
 158 
 159        ignore_crls