Comment 2 for bug 913935

Here is my racoon configuration (remote IP obfuscated) :

$ cat /etc/racoon/racoon.conf
privsep
{
  user "racoon";
  group "racoon";
}

log notify;
path certificate "/etc/racoon/certs";
path script "/etc/racoon/scripts";

remote 1.2.3.4 {
        exchange_mode main;
 nat_traversal on;
 certificate_type plain_rsa "/etc/racoon/local-key/sdeziel-laptop";
 peers_certfile plain_rsa "/etc/racoon/remote-key/sdeziel-fw.pub";
 peers_identifier fqdn "sdeziel-fw";
 my_identifier fqdn "sdeziel-laptop";
 verify_cert off;
        proposal {
                encryption_algorithm aes;
                hash_algorithm sha1;
                authentication_method rsasig;
                dh_group modp2048;
        }
}
sainfo anonymous {
        pfs_group modp2048;
        encryption_algorithm aes;
        authentication_algorithm hmac_sha1;
        compression_algorithm deflate;
}

Note that the remote peer receives the SA deletion message even if racoon crashes.