path certificate "/etc/openssl/certs";
log notify ;

remote 81.160.4.254
{
	exchange_mode main;
	my_identifier fqdn "marajade.sandelman.ottawa.on.ca";
	certificate_type x509 "/etc/openssl/certs/marajade-2001.pem" "/etc/openssl/private/marajade.pem";
	peers_certfile "/etc/openssl/certs/nsavax.pem";
	verify_cert off;
	send_cert off;
	send_cr off;
	proposal {
		encryption_algorithm 3des;
		hash_algorithm md5;
		authentication_method rsasig;
		dh_group modp1536;
	}
}


sainfo anonymous 
{
        pfs_group 5;
        encryption_algorithm 3des, blowfish, des;
        authentication_algorithm hmac_md5;
        compression_algorithm deflate;
}