Bgpctl,
Rdomain,
Ipsec,
Bgpd,
Isakmpd,
Rc.conf.local,
Strftime,
Tcp,
Ipsecctl,
Pf,
Bgpd-Conf BGPD.CONF(5) - File Formats Manual # BGPD.CONF(5) - File Formats Manual
NAME # bgpd.conf - BGP routing daemon configuration file
DESCRIPTION # The bgpd(8) daemon implements the Border Gateway Protocol version 4 as described in RFC 4271.
The bgpd.conf config file is divided into the following main sections:
MACROS
User-defined variables may be defined and used later, simplifying the configuration file.
GLOBAL CONFIGURATION
Global settings for bgpd(8).
SET CONFIGURATION
...
Netstart,
Arp,
Netintro,
Etherip,
Vether,
Ipsec,
Ipsecctl,
Tpmr,
Isakmpd,
Ifconfig,
Ioctl,
Errno,
Ip6,
Ip,
Hostname.if,
Pf,
Bridge BRIDGE(4) - Device Drivers Manual # BRIDGE(4) - Device Drivers Manual
NAME # bridge - Ethernet bridge interface
SYNOPSIS # pseudo-device bridge
#include <sys/types.h>
#include <net/if.h>
#include <netinet/in.h>
#include <netinet/if_ether.h>
#include <net/if_bridge.h>
DESCRIPTION # The bridge device creates a logical link between two or more Ethernet interfaces or encapsulation interfaces (see [etherip(4)](/man/man4/etherip.4)). This link between the interfaces selectively forwards frames from each interface on the bridge to every other interface on the bridge.
...
IPCOMP(4) - Device Drivers Manual # IPCOMP(4) - Device Drivers Manual
NAME # ipcomp - IP Payload Compression Protocol
DESCRIPTION # IPComp is enabled with the following sysctl(2) variable in /etc/sysctl.conf:
net.inet.ipcomp.enable
IPComp is a protocol used to reduce the size of IP datagrams. It can be used to enhance the communication performance between a pair of hosts/gateways, especially on slow links, by compressing the datagrams, provided the communicating entities have enough computational power.
...
IPSEC.CONF(5) - File Formats Manual # IPSEC.CONF(5) - File Formats Manual
NAME # ipsec.conf - IPsec configuration file
DESCRIPTION # The ipsec.conf file specifies rules and definitions for IPsec, which provides security services for IP datagrams. IPsec itself is a pair of protocols: Encapsulating Security Payload (ESP), which provides integrity and confidentiality; and Authentication Header (AH), which provides integrity. The IPsec protocol itself is described in ipsec(4).
In its most basic form, a flow is established between hosts and/or networks, and then Security Associations (SAs) are established, which detail how the desired protection will be achieved.
...
IPSEC(4) - Device Drivers Manual # IPSEC(4) - Device Drivers Manual
NAME # ipsec - IP Security Protocol
DESCRIPTION # IPsec is a pair of protocols, Encapsulating Security Payload (ESP) and Authentication Header (AH), which provide security services for IP datagrams.
Both protocols may be enabled or disabled using the following sysctl(2) variables in /etc/sysctl.conf. By default, both protocols are enabled:
net.inet.esp.enable
Enable the ESP IPsec protocol
net.inet.ah.enable
Enable the AH IPsec protocol
...
IPSECCTL(8) - System Manager’s Manual # IPSECCTL(8) - System Manager’s Manual
NAME # ipsecctl - control flows for IPsec
SYNOPSIS # ipsecctl [-cdFkmnv] [-D macro=value] [-f file] [-i fifo] [-s modifier]
DESCRIPTION # The ipsecctl utility controls flows that determine which packets are to be processed by IPsec. It allows ruleset configuration, and retrieval of status information from the kernel’s SPD (Security Policy Database) and SAD (Security Association Database). It also can control isakmpd(8) and establish tunnels using automatic keying with isakmpd(8).
...
SASYNCD.CONF(5) - File Formats Manual # SASYNCD.CONF(5) - File Formats Manual
NAME # sasyncd.conf - configuration file for sasyncd
DESCRIPTION # sasyncd.conf is the configuration file for the sasyncd(8) daemon.
The current line can be extended over multiple lines using a backslash (’\’). Comments can be put anywhere in the file using a hash mark (’#’), and extend to the end of the current line. Care should be taken when commenting out multi-line text: the comment is effective until the end of the entire block.
...
SEC(4) - Device Drivers Manual # SEC(4) - Device Drivers Manual
NAME # sec - route based IPsec VPN tunnel interface pseudo-device
SYNOPSIS # pseudo-device sec
DESCRIPTION # The sec driver provides point-to-point tunnel interfaces for IPv4 and IPv6 protected by the ipsec(4) Encapsulating Security Payload (ESP) protocol.
Traffic is encapsulated in the ESP protocol and forwarded to the remote endpoint by routing over a sec interface rather than matching policy in the IPsec Security Policy Database (SPD).
...
Tcpbench,
Netintro,
Getsockopt,
Ipsecctl,
Socket,
Inet,
Inet6,
Tcpdrop,
Ip6,
Ip,
Tcp TCP(4) - Device Drivers Manual # TCP(4) - Device Drivers Manual
NAME # tcp - Internet Transmission Control Protocol
SYNOPSIS # #include <sys/socket.h>
#include <netinet/in.h>
#include <netinet/tcp.h>
int
socket(AF_INET, SOCK_STREAM, 0);
int
socket(AF_INET6, SOCK_STREAM, 0);
DESCRIPTION # The TCP protocol provides a reliable, flow-controlled, two-way transmission of data. It is a byte-stream protocol used to support the SOCK_STREAM abstraction. TCP uses the standard Internet address format and, in addition, provides a per-host collection of “port addresses”.
...