conn uml2-fbsd
	# Left (freeswan-1.98b + alg-0.8.0 )
	left=192.168.2.20
	leftsubnet=10.1.20.0/24
	# Right (FreeBSD 4.5/ KAME + racoon )
	right=192.168.2.23
	rightsubnet=10.1.23.0/24
	# To authorize this connection, but not actually start it, at startup,
	# uncomment this.
	#IPCOMP against freebsd-4.5?
	#compress=no 
	auto=add
	auth=esp
	authby=secret
	pfs=yes
	#
	#freeswan-alg 0.7.x+ required for esp= parameter
	#
	#esp=aes128-sha1
	esp=aes128-sha1
	#esp=cast128-sha1
	#esp=blowfish128-sha1
	#esp=3des-sha1
	#
	#freeswan-alg 0.8.x+ required for pfsgroup= parameter
	#
	pfsgroup=modp1536
	#
	#
	#freeswan-alg 0.8.x+ required for ike= parameter
	#
	#ike=blowfish128-sha
	#ike=cast128-sha
	#ike=aes128-sha
	#ike=aes128-sha2_256,3des-sha  NOPE: only _one_ 
	#ike=aes128-sha2_256
	#ike=aes128-sha2_512 NOPE: b00ms-racoon
	#ike=aes128-sha2_256-modp2048
	ike=aes256-sha2_256-modp2048
	#ike=aes256-sha2_256-modp3072