|
ipsec mailkey − mail DNS records for Opportunistic Encryption |
|
ipsec −−me my@address.tld [−−reverse 1.2.3.4 aaa] [−−forward hostname.domain.tld] |
|
Mailkey is a meta−program. It generates a script which will attempt to mail the TXT records required to enable Opportunistic Encryption (OE). s DNS administrator is derived from SOA records. The mail body and destination address are freely editable in the script. An e−mail address for the domainâ If no administrator can be located, the output file will not be executable. The −−me option sets the Reply−to: address of the mail to be sent. The −−forward hostname sets the domain name to be used for initiator−only OE. The −−reverse ip−address sets the ip address to be used for full Opportunistic Encryption. |
|
ipsec mailkey −−me paul@xelerance.com −−forward bofh.xelerance.com |
|
creates the i−OE record for use on bofh.xelerance.com. |
|
ipsec mailkey −−me paul@xelerance.com −−reverse 193.110.157.17 |
|
creates full−OE record for use on bofh.xelerance.com’s static IP address. |
|
/etc/ipsec.secrets |
|
ipsecshowhostkey(8),host(8) |
|
Written for the Linux FreeS/WAN project <http://www.freeswan.org/: http://www.freeswan.org/> by Sam Sgro. |