Here is an example of a racoon.conf file that would work well with the client ...
path certificate "/usr/local/etc/racoon/cert";
exchange_mode main;
certificate_type x509 "vpngw.crt" "vpngw.key";
my_identifier asn1dn;
proposal_check strict;
lifetime time 24 hour;
generate_policy unique;
nat_traversal on;
ike_frag on;
dpd_delay 30;
proposal {
encryption_algorithm 3des;
hash_algorithm md5;
authentication_method hybrid_rsa_server;
dh_group 2;
}
}
pool_size 253;
network4 10.99.99.1;
netmask4 255.255.255.0;
auth_source system;
dns4 10.100.100.1;
wins4 10.100.100.2;
split_network include 10.100.100.0/24;
default_domain "mydomain.net";
}
lifetime time 8 hour;
encryption_algorithm 3des;
authentication_algorithm hmac_md5;
compression_algorithm deflate;
}