svn commit: r50771 - head/ja_JP.eucJP/books/handbook/security
Ryusuke SUZUKI
ryusuke at FreeBSD.org
Tue Aug 29 13:49:38 UTC 2017
Author: ryusuke
Date: Tue Aug 29 13:49:37 2017
New Revision: 50771
URL: https://svnweb.freebsd.org/changeset/doc/50771
Log:
- Merge the following from the English version:
r23603 -> r23830 head/ja_JP.eucJP/books/handbook/security/chapter.xml
Modified:
head/ja_JP.eucJP/books/handbook/security/chapter.xml
Modified: head/ja_JP.eucJP/books/handbook/security/chapter.xml
==============================================================================
--- head/ja_JP.eucJP/books/handbook/security/chapter.xml Tue Aug 29 13:36:46 2017 (r50770)
+++ head/ja_JP.eucJP/books/handbook/security/chapter.xml Tue Aug 29 13:49:37 2017 (r50771)
@@ -3,7 +3,7 @@
The FreeBSD Documentation Project
The FreeBSD Japanese Documentation Project
- Original revision: r23603
+ Original revision: r23830
$FreeBSD$
-->
<chapter xmlns="http://docbook.org/ns/docbook" xmlns:xlink="http://www.w3.org/1999/xlink" version="5.0" xml:id="security">
@@ -2885,10 +2885,13 @@ kadmin><userinput> exit</userinput></screen>
¤ª¤è¤Ó <filename>.k5users</filename></title>
<indexterm>
- <primary>Kerberos5</primary>
- <secondary>¥æ¡¼¥¶ÀßÄê¥Õ¥¡¥¤¥ë</secondary>
+ <primary><filename>.k5login</filename></primary>
</indexterm>
+ <indexterm>
+ <primary><filename>.k5users</filename></primary>
+ </indexterm>
+
<para>¥ì¥ë¥à¤Î¥æ¡¼¥¶¤Ï¡¢°ìÈÌŪ¤Ë¤Ï¡¢
(<systemitem class="username">tillman</systemitem>
¤Î¤è¤¦¤Ê) ¥í¡¼¥«¥ë¥æ¡¼¥¶¥¢¥«¥¦¥ó¥È¤ËÂбþ¤¹¤ë
@@ -3522,6 +3525,10 @@ Connection closed by foreign host.</screen>
</authorgroup>
</info>
+ <indexterm>
+ <primary>IPsec</primary>
+ </indexterm>
+
<para>¤³¤Î¾Ï¤Ç¤Ï¡¢FreeBSD ¥²¡¼¥È¥¦¥§¥¤¤ò»È¤Ã¤Æ¡¢
¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤Ë¤è¤Ã¤Æʬ¤±¤é¤ì¤¿¡¢Æó¤Ä¤Î¥Í¥Ã¥È¥ï¡¼¥¯´Ö¤Ë
VPN ¤òºîÀ®¤·¤Þ¤¹¡£</para>
@@ -3572,6 +3579,11 @@ Connection closed by foreign host.</screen>
¤·¤«¤·¤Ê¤¬¤é¡¢hardware-accelerated IPsec ¤ò͸ú¤Ë¤¹¤ë¤¿¤á¤Ë¤Ï¡¢
¥«¡¼¥Í¥ë¥³¥ó¥Õ¥£¥°¥ì¡¼¥·¥ç¥ó¥Õ¥¡¥¤¥ë¤Ë°Ê²¼¤Î¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó¤òÄɲ乤ëɬÍפ¬¤¢¤ê¤Þ¤¹¡£</para>
+ <indexterm>
+ <primary>¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó</primary>
+ <secondary>FAST_IPSEC</secondary>
+ </indexterm>
+
<screen>
options FAST_IPSEC # new IPsec (cannot define w/ IPSEC)
</screen>
@@ -3582,6 +3594,16 @@ options FAST_IPSEC # new IPsec (cannot define w/ IP
¤ò»²¾È¤·¤Æ¤¯¤À¤µ¤¤¡£</para>
</note>
+ <indexterm>
+ <primary>IPsec</primary>
+ <secondary>ESP</secondary>
+ </indexterm>
+
+ <indexterm>
+ <primary>IPsec</primary>
+ <secondary>AH</secondary>
+ </indexterm>
+
<para>IPsec ¤ÏÆó¤Ä¤Î¥µ¥Ö¥×¥í¥È¥³¥ë¤«¤é¹½À®¤µ¤ì¤Þ¤¹¡£</para>
<itemizedlist>
@@ -3605,7 +3627,16 @@ options FAST_IPSEC # new IPsec (cannot define w/ IP
<para><acronym>ESP</acronym> ¤ª¤è¤Ó <acronym>AH</acronym>
¤Ï¡¢»ÈÍѤ¹¤ë´Ä¶¤Ë¹ç¤ï¤»¤Æ¡¢
°ì½ï¤Ë»È¤¦¤³¤È¤âÊÌ¡¹¤Ë»È¤¦¤³¤È¤â¤Ç¤¤Þ¤¹¡£</para>
-
+
+ <indexterm>
+ <primary>VPN</primary>
+ </indexterm>
+
+ <indexterm>
+ <primary>virtual private network</primary>
+ <see>VPN</see>
+ </indexterm>
+
<para>IPsec ¤Ï¡¢Ä¾ÀÜÆó¤Ä¤Î¥Û¥¹¥È´Ö¤Î¥È¥é¥Õ¥£¥Ã¥¯¤ò°Å¹æ²½¤¹¤ë
<emphasis>Transport Mode</emphasis>¡¢¤â¤·¤¯¤Ï¡¢
2 ¤Ä¤Î¶¦Æ±¤¹¤ë¥Í¥Ã¥È¥ï¡¼¥¯´Ö¤Ç°ÂÁ´¤ËÄÌ¿®¤¹¤ë¤³¤È¤ò²Äǽ¤Ë¤¹¤ë¤è¤¦¤Ë¡¢
@@ -3619,12 +3650,27 @@ options FAST_IPSEC # new IPsec (cannot define w/ IP
<para>¥«¡¼¥Í¥ë¤Ë IPsec ¤Î¥µ¥Ý¡¼¥È¤òÄɲ乤ë¤Ë¤Ï¡¢
¥«¡¼¥Í¥ë¥³¥ó¥Õ¥£¥°¥ì¡¼¥·¥ç¥ó¥Õ¥¡¥¤¥ë¤Ë°Ê²¼¤Î¥ª¥×¥·¥ç¥ó¤òÄɲ䷤Ƥ¯¤À¤µ¤¤¡£</para>
-
+
+ <indexterm>
+ <primary>¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó</primary>
+ <secondary>IPSEC</secondary>
+ </indexterm>
+
+ <indexterm>
+ <primary>¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó</primary>
+ <secondary>IPSEC_ESP</secondary>
+ </indexterm>
+
<screen>
options IPSEC #IP security
options IPSEC_ESP #IP security (crypto; define w/ IPSEC)
</screen>
+ <indexterm>
+ <primary>¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó</primary>
+ <secondary>IPSEC_DEBUG</secondary>
+ </indexterm>
+
<para>IPsec ¤Î¥Ç¥Ð¥Ã¥°¥µ¥Ý¡¼¥È¤¬É¬ÍפǤ¢¤ì¤Ð¡¢
°Ê²¼¤Î¥«¡¼¥Í¥ë¥ª¥×¥·¥ç¥ó¤òÄɲ䷤Ƥ¯¤À¤µ¤¤¡£</para>
@@ -3646,7 +3692,12 @@ options IPSEC_DEBUG #debug for IP security
<sect2>
<title>¥·¥Ê¥ê¥ª: ¥¤¥ó¥¿¡¼¥Í¥Ã¥È¤ËÀܳ¤·¤Æ¤¤¤ë 2 ¤Ä¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤¬
1 ¤Ä¤Î¥Í¥Ã¥È¥ï¡¼¥¯¤È¤·¤Æ¿¶¤ëÉñ¤¦</title>
-
+
+ <indexterm>
+ <primary>VPN</primary>
+ <secondary>creating</secondary>
+ </indexterm>
+
<para>Á°Äó¤Ï°Ê²¼¤ÎÄ̤ê¤Ç¤¹¡£</para>
<itemizedlist>
@@ -4077,7 +4128,12 @@ route_vpn="192.168.2.0 192.168.2.1 netmask 0xffffff00"
Encapsulated Security Payload (ESP) ¥×¥í¥È¥³¥ë¤ËÂбþ¤¹¤ë¤è¤¦¤Ë¡¢
ÀßÄꤹ¤ëɬÍפ¬¤¢¤ê¤Þ¤¹¡£
¤³¤ì¤Ï¡¢¥«¡¼¥Í¥ë¤ò°Ê²¼¤Î¤è¤¦¤ËÀßÄꤹ¤ë¤³¤È¤Ç²Äǽ¤Ç¤¹¡£</para>
-
+
+ <indexterm>
+ <primary>kernel options</primary>
+ <secondary>IPSEC</secondary>
+ </indexterm>
+
<programlisting>options IPSEC
options IPSEC_ESP
</programlisting>
@@ -4085,6 +4141,10 @@ options IPSEC_ESP
<para>¤½¤·¤ÆºÆ¹½ÃÛ¤·¡¢ºÆ¥¤¥ó¥¹¥È¡¼¥ë¤ò¹Ô¤Ã¤Æ¡¢ºÆµ¯Æ°¤·¤Æ¤¯¤À¤µ¤¤¡£
¤³¤ì¤ÏξÊý¤Î¥²¡¼¥È¥¦¥§¥¤¥Û¥¹¥È¤Î¥«¡¼¥Í¥ë¤Ç¹Ô¤¦É¬Íפ¬¤¢¤ê¤Þ¤¹¡£</para>
+ <indexterm>
+ <primary>IKE</primary>
+ </indexterm>
+
<para>¥»¥¥å¥ê¥Æ¥£¥¢¥½¥·¥¨¡¼¥·¥ç¥ó¤ÎÀßÄê¤Ë´Ø¤·¤Æ¤¤¤¦¤È¡¢
2 ¤Ä¤ÎÁªÂò»è¤¬¤¢¤ê¤Þ¤¹¡£
1 ¤ÄÌܤϡ¢2 ¤Ä¤Î¥Û¥¹¥È´Ö¤ÎÀßÄê¤ò¼êÆ°¤ÇÀßÄꤹ¤ëÊýË¡¤Ç¡¢
@@ -4095,6 +4155,10 @@ options IPSEC_ESP
<para>¸å¼Ô¤¬¿ä¾©¤µ¤ì¤Þ¤¹¡£¤È¤Ë¤«¤¯¡¢ÀßÄ꤬¤è¤ê´Êñ¤Ç¤¹¡£</para>
+ <indexterm>
+ <primary><command>setkey</command></primary>
+ </indexterm>
+
<para>&man.setkey.8; ¤òÍѤ¤ÆÀ¤ë¤³¤È¤Ç¥»¥¥å¥ê¥Æ¥£¥Ý¥ê¥·¤òÀßÄꤷ¤¿¤ê¡¢
ɽ¼¨¤Ç¤¤Þ¤¹¡£
&man.route.8; ¤¬¥«¡¼¥Í¥ë¥ë¡¼¥Æ¥£¥ó¥°¥Æ¡¼¥Ö¥ë¤Ë´Ø¤·¤Æ¤¤¤ë¤Î¤ÈƱÍͤˡ¢
@@ -4110,6 +4174,10 @@ options IPSEC_ESP
¤³¤Îʸ½ñ¤Ç¤Ï¡¢¤½¤ÎÃæ¤Î°ì¤Ä¤Î racoon ¤Î»È¤¤Êý¤Ë¤Ä¤¤¤ÆÀâÌÀ¤·¤Þ¤¹¡£
racoom ¤Ï¡¢FreeBSD Ports Collection ¤Î security ¥«¥Æ¥´¥ê¤Ë¤¢¤ê¤Þ¤¹¡£
Ä̾ï¤ÎÊýË¡¤Ç¥¤¥ó¥¹¥È¡¼¥ë¤¬¤Ç¤¤Þ¤¹¡£</para>
+
+ <indexterm>
+ <primary>racoon</primary>
+ </indexterm>
<para>racoon ¤Ï¡¢Î¾Êý¤Î¥²¡¼¥È¥¦¥§¥¤¥Û¥¹¥È¤Ç¼Â¹Ô¤µ¤ì¤ëɬÍפ¬¤¢¤ê¤Þ¤¹¡£
¤½¤ì¤¾¤ì¤Î¥Û¥¹¥È¤Ç¡¢¤â¤¦°ì¤Ä¤Î VPN ¤Îü¤Î IP ¥¢¥É¥ì¥¹¤ª¤è¤Ó
More information about the svn-doc-all
mailing list