r608 - community/f13/it-IT
transif at fedoraproject.org
transif at fedoraproject.org
Tue Jul 13 10:33:26 UTC 2010
Author: transif
Date: 2010-07-13 10:33:26 +0000 (Tue, 13 Jul 2010)
New Revision: 608
Modified:
community/f13/it-IT/VPN.po
Log:
l10n: Updates to Italian (it) translation
Transmitted-via: Transifex (translate.fedoraproject.org)
Modified: community/f13/it-IT/VPN.po
===================================================================
--- community/f13/it-IT/VPN.po 2010-07-12 16:11:32 UTC (rev 607)
+++ community/f13/it-IT/VPN.po 2010-07-13 10:33:26 UTC (rev 608)
@@ -1,15 +1,15 @@
# Italian translation of docs.security-guide.
# Pierro Silvio <perplesso82 at gmail.com>, 2009.
-#
-#
+# luigi votta <lewis41 at fedoraproject.org>, 2010.
msgid ""
msgstr ""
"Project-Id-Version: docs-security.guide\n"
"Report-Msgid-Bugs-To: http://bugs.kde.org\n"
"POT-Creation-Date: 2010-06-07T23:36:21\n"
-"PO-Revision-Date: 2009-07-24 11:37+0200\n"
-"Last-Translator: Pierro Silvio <perplesso82 at gmail.com>\n"
-"Language-Team: Italian\n"
+"PO-Revision-Date: 2010-07-13 12:21+0200\n"
+"Last-Translator: luigi votta <lewis41 at fedoraproject.org>\n"
+"Language-Team: italiana <Fedora Project trans-it <trans-it at lists."
+"fedoraproject.org>>\n"
"MIME-Version: 1.0\n"
"Content-Type: text/plain; charset=UTF-8\n"
"Content-Transfer-Encoding: 8bit\n"
@@ -17,232 +17,551 @@
#. Tag: title
#, no-c-format
msgid "Virtual Private Networks (VPNs)"
-msgstr ""
+msgstr "Virtual Private Networks (VPN)"
#. Tag: para
#, no-c-format
-msgid "Organizations with several satellite offices often connect to each other with dedicated lines for efficiency and protection of sensitive data in transit. For example, many businesses use frame relay or <firstterm>Asynchronous Transfer Mode</firstterm> (<acronym>ATM</acronym>) lines as an end-to-end networking solution to link one office with others. This can be an expensive proposition, especially for small to medium sized businesses (<acronym>SMB</acronym>s) that want to expand without paying the high costs associated with enterprise-level, dedicated digital circuits."
+msgid ""
+"Organizations with several satellite offices often connect to each other "
+"with dedicated lines for efficiency and protection of sensitive data in "
+"transit. For example, many businesses use frame relay or "
+"<firstterm>Asynchronous Transfer Mode</firstterm> (<acronym>ATM</acronym>) "
+"lines as an end-to-end networking solution to link one office with others. "
+"This can be an expensive proposition, especially for small to medium sized "
+"businesses (<acronym>SMB</acronym>s) that want to expand without paying the "
+"high costs associated with enterprise-level, dedicated digital circuits."
msgstr ""
+"Le organizzazioni con uffici dislocati in diversi località spesso sono "
+"connessi tra loro attraverso linee dedicate che garantiscono efficenza e "
+"proteggono i dati sensibili in transito. Per esempio, molte attività "
+"commerciali, usano frame relay o linee <firstterm>ATM</firstterm> "
+"(<acronym>Asynchronous Transfer Mode</acronym>), come soluzioni di rete end-"
+"to-end per collegare un ufficio con gli altri. Tuttavia per le piccole e "
+"medie imprese (n.d.t.: e l'Italia fonda il suo PIL sull'attività di circa "
+"l'80% di tali imprese!) che desiderano espandersi, investire in tale "
+"soluzioni, richiede alti costi di investimento in circuiti di rete digitali, "
+"che il più delle volte non possono permettersi, a causa di bilanci aziendali "
+"già piuttosto gravati."
#. Tag: para
#, no-c-format
-msgid "To address this need, <firstterm>Virtual Private Networks</firstterm> (<abbrev>VPN</abbrev>s) were developed. Following the same functional principles as dedicated circuits, <abbrev>VPN</abbrev>s allow for secured digital communication between two parties (or networks), creating a <firstterm>Wide Area Network</firstterm> (<acronym>WAN</acronym>) from existing <firstterm>Local Area Networks</firstterm> (<acronym>LAN</acronym>s). Where it differs from frame relay or ATM is in its transport medium. <abbrev>VPN</abbrev>s transmit over IP using datagrams as the transport layer, making it a secure conduit through the Internet to an intended destination. Most free software <abbrev>VPN</abbrev> implementations incorporate open standard encryption methods to further mask data in transit."
+msgid ""
+"To address this need, <firstterm>Virtual Private Networks</firstterm> "
+"(<abbrev>VPN</abbrev>s) were developed. Following the same functional "
+"principles as dedicated circuits, <abbrev>VPN</abbrev>s allow for secured "
+"digital communication between two parties (or networks), creating a "
+"<firstterm>Wide Area Network</firstterm> (<acronym>WAN</acronym>) from "
+"existing <firstterm>Local Area Networks</firstterm> (<acronym>LAN</"
+"acronym>s). Where it differs from frame relay or ATM is in its transport "
+"medium. <abbrev>VPN</abbrev>s transmit over IP using datagrams as the "
+"transport layer, making it a secure conduit through the Internet to an "
+"intended destination. Most free software <abbrev>VPN</abbrev> "
+"implementations incorporate open standard encryption methods to further mask "
+"data in transit."
msgstr ""
+"Le reti <firstterm>VPN</firstterm> (<abbrev>Virtual Private Networks</"
+"abbrev>) sono state progettate per venire incontro a queste esigenze "
+"aziendali. Seguendo gli stessi principi funzionali dei circuiti dedicati, le "
+"reti <abbrev>VPN</abbrev> consentono comunicazioni digitali sicure tra due "
+"partecipanti (o reti), creando una <firstterm>WAN</firstterm> (<acronym>Wide "
+"Area Network</acronym>) a partire da <firstterm>LAN</firstterm> "
+"(<acronym>Local Area Network</acronym>) esistenti. L'unica differenza "
+"rispetto a frame relay o ATM è il mezzo di trasporto. Le reti <abbrev>VPN</"
+"abbrev> trasportano i dati sul layer IP, usando pacchetti, attraverso un "
+"canale sicuro che attraverso Internet giunge alla rete di destinazione. la "
+"maggior parte delle implementazioni free di <abbrev>VPN</abbrev>, per "
+"ulteriormente mascherare i dati in transito, incorporano metodi di "
+"cifratura, standard aperti."
#. Tag: para
#, no-c-format
-msgid "Some organizations employ hardware <abbrev>VPN</abbrev> solutions to augment security, while others use software or protocol-based implementations. Several vendors provide hardware <abbrev>VPN</abbrev> solutions, such as Cisco, Nortel, IBM, and Checkpoint. There is a free software-based <abbrev>VPN</abbrev> solution for Linux called FreeS/Wan that utilizes a standardized <firstterm>Internet Protocol Security</firstterm> (<abbrev>IPsec</abbrev>) implementation. These <abbrev>VPN</abbrev> solutions, irrespective of whether they are hardware or software based, act as specialized routers that exist between the IP connection from one office to another."
+msgid ""
+"Some organizations employ hardware <abbrev>VPN</abbrev> solutions to augment "
+"security, while others use software or protocol-based implementations. "
+"Several vendors provide hardware <abbrev>VPN</abbrev> solutions, such as "
+"Cisco, Nortel, IBM, and Checkpoint. There is a free software-based "
+"<abbrev>VPN</abbrev> solution for Linux called FreeS/Wan that utilizes a "
+"standardized <firstterm>Internet Protocol Security</firstterm> "
+"(<abbrev>IPsec</abbrev>) implementation. These <abbrev>VPN</abbrev> "
+"solutions, irrespective of whether they are hardware or software based, act "
+"as specialized routers that exist between the IP connection from one office "
+"to another."
msgstr ""
+"Alcune organizzazioni impiegano soluzioni <abbrev>VPN</abbrev> hardware, per "
+"aumentare la sicurezza, altre usano implementazioni software o basate su "
+"protocollo. Esistono diversi produttori di soluzioni <abbrev>VPN</abbrev> "
+"hardware, come Cisco, Nortel, IBM, e Checkpoint. Esiste una "
+"soluzione<abbrev>VPN</abbrev> basata su software (free) anche per Linux, "
+"denominata FreeS/Wan, che utilizza una implementazione standardizzata di "
+"<abbrev>IPsec</abbrev> (<firstterm>Internet Protocol Security</firstterm>). "
+"Le soluzioni <abbrev>VPN</abbrev>, sia hardware sia software, si comportano "
+"come router specializzati tra le connessioni IP dei vari uffici collegati "
+"tra loro."
#. Tag: title
#, no-c-format
msgid "How Does a VPN Work?"
-msgstr ""
+msgstr "Funzionamento di una rete VPN"
#. Tag: para
#, no-c-format
-msgid "When a packet is transmitted from a client, it sends it through the <abbrev>VPN</abbrev> router or gateway, which adds an <firstterm>Authentication Header</firstterm> (<abbrev>AH</abbrev>) for routing and authentication. The data is then encrypted and, finally, enclosed with an <firstterm>Encapsulating Security Payload</firstterm> (<abbrev>ESP</abbrev>). This latter constitutes the decryption and handling instructions."
+msgid ""
+"When a packet is transmitted from a client, it sends it through the "
+"<abbrev>VPN</abbrev> router or gateway, which adds an "
+"<firstterm>Authentication Header</firstterm> (<abbrev>AH</abbrev>) for "
+"routing and authentication. The data is then encrypted and, finally, "
+"enclosed with an <firstterm>Encapsulating Security Payload</firstterm> "
+"(<abbrev>ESP</abbrev>). This latter constitutes the decryption and handling "
+"instructions."
msgstr ""
+"Quando un pacchetto viene trasmesso da un client, esso passa attraverso il "
+"router o gateway <abbrev>VPN</abbrev>, che aggiunge un <abbrev>AH</abbrev> "
+"(<firstterm>Authentication Header</firstterm>) usato per routing ed "
+"autenticazione. Successivamente i dati vengono cifrati, e poi racchiusi in "
+"un <abbrev>ESP</abbrev> (<firstterm>Encapsulating Security Payload</"
+"firstterm>). All'interno di quest'ultimo si trovano le istruzioni per "
+"gestire e decifrare il pacchetto."
#. Tag: para
#, no-c-format
-msgid "The receiving <abbrev>VPN</abbrev> router strips the header information, decrypts the data, and routes it to its intended destination (either a workstation or other node on a network). Using a network-to-network connection, the receiving node on the local network receives the packets already decrypted and ready for processing. The encryption/decryption process in a network-to-network <abbrev>VPN</abbrev> connection is transparent to a local node."
+msgid ""
+"The receiving <abbrev>VPN</abbrev> router strips the header information, "
+"decrypts the data, and routes it to its intended destination (either a "
+"workstation or other node on a network). Using a network-to-network "
+"connection, the receiving node on the local network receives the packets "
+"already decrypted and ready for processing. The encryption/decryption "
+"process in a network-to-network <abbrev>VPN</abbrev> connection is "
+"transparent to a local node."
msgstr ""
+"Il router destinatario, estrae le informazioni dall'intestazione, decifra i "
+"dati e invia i dati alla sua destinazione (una workstation o un altro nodo "
+"della rete). Usando una connessione rete-rete, il nodo ricevente sulla rete "
+"locale, riceve i pacchetti già decifrati e pronti per l'uso. Il processo di "
+"cifratura/decifratura in una connessione <abbrev>VPN</abbrev> rete-rete è "
+"trasparente al nodo locale."
#. Tag: para
#, no-c-format
-msgid "With such a heightened level of security, an attacker must not only intercept a packet, but decrypt the packet as well. Intruders who employ a man-in-the-middle attack between a server and client must also have access to at least one of the private keys for authenticating sessions. Because they employ several layers of authentication and encryption, <abbrev>VPN</abbrev>s are a secure and effective means of connecting multiple remote nodes to act as a unified intranet."
+msgid ""
+"With such a heightened level of security, an attacker must not only "
+"intercept a packet, but decrypt the packet as well. Intruders who employ a "
+"man-in-the-middle attack between a server and client must also have access "
+"to at least one of the private keys for authenticating sessions. Because "
+"they employ several layers of authentication and encryption, <abbrev>VPN</"
+"abbrev>s are a secure and effective means of connecting multiple remote "
+"nodes to act as a unified intranet."
msgstr ""
+"Con un tale livello di sicurezza, un attacker non solo deve intercettare il "
+"pacchetto, ma anche decifrarlo. Intrusori che impiegano un attacco tipo man-"
+"in-the-middle, tra un server ed un client, devono avere accesso anche ad "
+"almeno ad una delle chiavi di autenticazione delle sessioni. Poichè si usano "
+"diversi livelli di autenticazione e di cifratura, le reti <abbrev>VPN</"
+"abbrev> sono un mezzo sicuro ed efficace per collegare multipli nodi remoti, "
+"che diventano una intranet unificata."
#. Tag: title
#, no-c-format
msgid "VPNs and &PROD;"
-msgstr ""
+msgstr "Reti VPN e &PROD;"
#. Tag: para
#, no-c-format
-msgid "&PROD; provides various options in terms of implementing a software solution to securely connect to a <acronym>WAN</acronym>. <firstterm>Internet Protocol Security</firstterm> (<acronym>IPsec</acronym>) is the supported <abbrev>VPN</abbrev> implementation for &PROD;, and sufficiently addresses the usability needs of organizations with branch offices or remote users."
+msgid ""
+"&PROD; provides various options in terms of implementing a software solution "
+"to securely connect to a <acronym>WAN</acronym>. <firstterm>Internet "
+"Protocol Security</firstterm> (<acronym>IPsec</acronym>) is the supported "
+"<abbrev>VPN</abbrev> implementation for &PROD;, and sufficiently addresses "
+"the usability needs of organizations with branch offices or remote users."
msgstr ""
+"<acronym>IPsec</acronym> (<firstterm>Internet Protocol Security</firstterm>) "
+"è l'implementazione di reti <abbrev>VPN</abbrev> supportata in &PROD; in "
+"grado di sopperire adeguatamente ai bisogni di usabilità delle "
+"organizzazioni con uffici ramificati o utenti remoti."
#. Tag: title
#, no-c-format
msgid "IPsec"
-msgstr ""
+msgstr "IPsec"
#. Tag: para
#, no-c-format
-msgid "&PROD; supports <abbrev>IPsec</abbrev> for connecting remote hosts and networks to each other using a secure tunnel on a common carrier network such as the Internet. <abbrev>IPsec</abbrev> can be implemented using a host-to-host (one computer workstation to another) or network-to-network (one <acronym>LAN</acronym>/<acronym>WAN</acronym> to another) configuration."
+msgid ""
+"&PROD; supports <abbrev>IPsec</abbrev> for connecting remote hosts and "
+"networks to each other using a secure tunnel on a common carrier network "
+"such as the Internet. <abbrev>IPsec</abbrev> can be implemented using a host-"
+"to-host (one computer workstation to another) or network-to-network (one "
+"<acronym>LAN</acronym>/<acronym>WAN</acronym> to another) configuration."
msgstr ""
+"&PROD; supporta <abbrev>IPsec</abbrev> per connettere tra loro, tramite un "
+"tunnel sicuro, che attraversa una rete pubblica come Internet,.reti ed host "
+"remoti. <abbrev>IPsec</abbrev> può essere implementato sia per una "
+"configurazione host-to-host (tra due workstation) sia per una "
+"configurazione network-to-network (tra due <acronym>LAN</acronym>/"
+"<acronym>WAN</acronym>)."
#. Tag: para
#, no-c-format
-msgid "The <abbrev>IPsec</abbrev> implementation in &PROD; uses <firstterm>Internet Key Exchange</firstterm> (<firstterm>IKE</firstterm>), a protocol implemented by the Internet Engineering Task Force (<acronym>IETF</acronym>), used for mutual authentication and secure associations between connecting systems."
+msgid ""
+"The <abbrev>IPsec</abbrev> implementation in &PROD; uses <firstterm>Internet "
+"Key Exchange</firstterm> (<firstterm>IKE</firstterm>), a protocol "
+"implemented by the Internet Engineering Task Force (<acronym>IETF</"
+"acronym>), used for mutual authentication and secure associations between "
+"connecting systems."
msgstr ""
+"L'implementazione di <abbrev>IPsec</abbrev> in &PROD; usa <firstterm>IKE</"
+"firstterm> (<firstterm>Internet Key Exchange</firstterm>), un protocollo "
+"progettato dall'<acronym>IETF</acronym> (Internet Engineering Task Force), "
+"che garantisce sia autenticazione mutua sia collegamenti sicuri tra i "
+"sistemi."
#. Tag: title
#, no-c-format
msgid "Creating an <abbrev>IPsec</abbrev> Connection"
-msgstr ""
+msgstr "Creare una connessione <abbrev>IPsec</abbrev>"
#. Tag: para
#, no-c-format
-msgid "An <abbrev>IPsec</abbrev> connection is split into two logical phases. In phase 1, an <abbrev>IPsec</abbrev> node initializes the connection with the remote node or network. The remote node or network checks the requesting node's credentials and both parties negotiate the authentication method for the connection."
+msgid ""
+"An <abbrev>IPsec</abbrev> connection is split into two logical phases. In "
+"phase 1, an <abbrev>IPsec</abbrev> node initializes the connection with the "
+"remote node or network. The remote node or network checks the requesting "
+"node's credentials and both parties negotiate the authentication method "
+"for the connection."
msgstr ""
+"Una connessione <abbrev>IPsec</abbrev> è suddivisa in due fasi logiche. "
+"Nella prima fase, un nodo <abbrev>IPsec</abbrev> inizializza la connessione "
+"con la rete o il nodo remoto, che a sua volta controlla le credenziali del "
+"nodo richiedente, dopodichè entrambi negoziano il metodo di autenticazione "
+"da usare durante la connessione."
#. Tag: para
#, no-c-format
-msgid "On &PROD; systems, an <abbrev>IPsec</abbrev> connection uses the <firstterm>pre-shared key</firstterm> method of <abbrev>IPsec</abbrev> node authentication. In a pre-shared key <abbrev>IPsec</abbrev> connection, both hosts must use the same key in order to move to Phase 2 of the <abbrev>IPsec</abbrev> connection."
+msgid ""
+"On &PROD; systems, an <abbrev>IPsec</abbrev> connection uses the "
+"<firstterm>pre-shared key</firstterm> method of <abbrev>IPsec</abbrev> node "
+"authentication. In a pre-shared key <abbrev>IPsec</abbrev> connection, both "
+"hosts must use the same key in order to move to Phase 2 of the "
+"<abbrev>IPsec</abbrev> connection."
msgstr ""
+"Nei sistemi &PROD;, una connessione <abbrev>IPsec</abbrev>, per autenticare "
+"i nodi, usa il metodo <firstterm>pre-shared key</firstterm> (della chiave "
+"pre-condivisa). In una connessione <abbrev>IPsec</abbrev> con chiave pre-"
+"condivisa, entrambi gli host devono usare la stessa chiave per poter passare "
+"alla seconda fase della connessione <abbrev>IPsec</abbrev>."
#. Tag: para
#, no-c-format
-msgid "Phase 2 of the <abbrev>IPsec</abbrev> connection is where the <firstterm>Security Association</firstterm> (<acronym>SA</acronym>) is created between <abbrev>IPsec</abbrev> nodes. This phase establishes an <abbrev>SA</abbrev> database with configuration information, such as the encryption method, secret session key exchange parameters, and more. This phase manages the actual <abbrev>IPsec</abbrev> connection between remote nodes and networks."
+msgid ""
+"Phase 2 of the <abbrev>IPsec</abbrev> connection is where the "
+"<firstterm>Security Association</firstterm> (<acronym>SA</acronym>) is "
+"created between <abbrev>IPsec</abbrev> nodes. This phase establishes an "
+"<abbrev>SA</abbrev> database with configuration information, such as the "
+"encryption method, secret session key exchange parameters, and more. This "
+"phase manages the actual <abbrev>IPsec</abbrev> connection between remote "
+"nodes and networks."
msgstr ""
+"La seconda fase della connessione <abbrev>IPsec</abbrev>, prevede la "
+"creazione dell'<acronym>SA</acronym> (<firstterm>Security Association</"
+"firstterm>), tra i nodi <abbrev>IPsec</abbrev>. Questa fase genera un "
+"database di <abbrev>SA</abbrev> contenente informazioni di configurazioni, "
+"come metodo di cifratura, parametri di scambio delle chiavi di sessione, ed "
+"altro. Questa fase gestisce l'effettiva connessione <abbrev>IPsec</abbrev> "
+"tra i nodi remoti o le reti."
#. Tag: para
#, no-c-format
-msgid "The &PROD; implementation of <abbrev>IPsec</abbrev> uses IKE for sharing keys between hosts across the Internet. The <command>racoon</command> keying daemon handles the IKE key distribution and exchange. Refer to the <command>racoon</command> man page for more information about this daemon."
+msgid ""
+"The &PROD; implementation of <abbrev>IPsec</abbrev> uses IKE for sharing "
+"keys between hosts across the Internet. The <command>racoon</command> keying "
+"daemon handles the IKE key distribution and exchange. Refer to the "
+"<command>racoon</command> man page for more information about this daemon."
msgstr ""
+"L'implementazione di <abbrev>IPsec</abbrev> in &PROD;, usa IKE per lo "
+"scambio delle chiavi tra gli host. Il demone delle chiavi, <command>racoon</"
+"command>, è addetto alla distribuzione e allo scambio delle chiavi IKE. Per "
+"maggiori informazioni su <command>racoon</command>, vedere le pagine di man "
+"relative."
#. Tag: title
#, no-c-format
msgid "IPsec Installation"
-msgstr ""
+msgstr "Installazione di IPsec"
#. Tag: para
#, no-c-format
-msgid "Implementing <abbrev>IPsec</abbrev> requires that the <filename>ipsec-tools</filename> RPM package be installed on all <abbrev>IPsec</abbrev> hosts (if using a host-to-host configuration) or routers (if using a network-to-network configuration). The RPM package contains essential libraries, daemons, and configuration files for setting up the <abbrev>IPsec</abbrev> connection, including:"
+msgid ""
+"Implementing <abbrev>IPsec</abbrev> requires that the <filename>ipsec-tools</"
+"filename> RPM package be installed on all <abbrev>IPsec</abbrev> hosts (if "
+"using a host-to-host configuration) or routers (if using a network-to-"
+"network configuration). The RPM package contains essential libraries, "
+"daemons, and configuration files for setting up the <abbrev>IPsec</abbrev> "
+"connection, including:"
msgstr ""
+"<abbrev>IPsec</abbrev> richiede che il pacchetto RPM <filename>ipsec-tools</"
+"filename>, sia installato su tutti gli host interessati (nel caso di una "
+"configurazione host-to-host) o router (nel caso di una configurazione "
+"network-to network). Il pacchetto RPM contiene le librerie, i demoni, e i "
+"file di configurazione essenziali per impostare una connessione "
+"<abbrev>IPsec</abbrev>, inclusi:"
#. Tag: para
#, no-c-format
-msgid "<command>/sbin/setkey</command> — manipulates the key management and security attributes of <abbrev>IPsec</abbrev> in the kernel. This executable is controlled by the <command>racoon</command> key management daemon. Refer to the <command>setkey</command>(8) man page for more information."
+msgid ""
+"<command>/sbin/setkey</command> — manipulates the key management and "
+"security attributes of <abbrev>IPsec</abbrev> in the kernel. This executable "
+"is controlled by the <command>racoon</command> key management daemon. Refer "
+"to the <command>setkey</command>(8) man page for more information."
msgstr ""
+"<command>/sbin/setkey</command> — calibra il gestore delle chiavi e "
+"gli attributi di sicurezza di <abbrev>IPsec</abbrev>, nel kernel. "
+"L'eseguibile è controllato dal processo <command>racoon</command>, gestore "
+"delle chiavi. Per maggiori informazioni su <command>setkey</command>, vedere "
+"le pagine di man (8) relative."
#. Tag: para
#, no-c-format
-msgid "<command>/usr/sbin/racoon</command> — the IKE key management daemon, used to manage and control security associations and key sharing between IPsec-connected systems."
+msgid ""
+"<command>/usr/sbin/racoon</command> — the IKE key management daemon, "
+"used to manage and control security associations and key sharing between "
+"IPsec-connected systems."
msgstr ""
+"<command>/usr/sbin/racoon</command> — il processo che gestisce le "
+"chiavi IKE, usato per gestire e controllare la sicurezza delle connessioni e "
+"lo scambio delle chiavi tra sistemi IPsec."
#. Tag: para
#, no-c-format
-msgid "<filename>/etc/racoon/racoon.conf</filename> — the <command>racoon</command> daemon configuration file used to configure various aspects of the <abbrev>IPsec</abbrev> connection, including authentication methods and encryption algorithms used in the connection. Refer to the <filename>racoon.conf</filename>(5) man page for a complete listing of available directives."
+msgid ""
+"<filename>/etc/racoon/racoon.conf</filename> — the <command>racoon</"
+"command> daemon configuration file used to configure various aspects of the "
+"<abbrev>IPsec</abbrev> connection, including authentication methods and "
+"encryption algorithms used in the connection. Refer to the <filename>racoon."
+"conf</filename>(5) man page for a complete listing of available directives."
msgstr ""
+"<filename>/etc/racoon/racoon.conf</filename> — il file di "
+"configurazione di <command>racoon</command>, usato per impostare vari "
+"aspetti di una connessione <abbrev>IPsec</abbrev>, inclusi i metodi di "
+"autenticazione e gli algoritmi di cifratura da usare nella connessione. Per "
+"una lista completa delle direttive disponibili, vedere le pagine di man (5) "
+"relative a <filename>racoon.conf</filename>."
#. Tag: para
#, no-c-format
-msgid "To configure <abbrev>IPsec</abbrev> on &PROD;, you can use the <application>Network Administration Tool</application>, or manually edit the networking and <abbrev>IPsec</abbrev> configuration files."
+msgid ""
+"To configure <abbrev>IPsec</abbrev> on &PROD;, you can use the "
+"<application>Network Administration Tool</application>, or manually edit the "
+"networking and <abbrev>IPsec</abbrev> configuration files."
msgstr ""
+"Per configurare <abbrev>IPsec</abbrev> su un sistema &PROD;, si può usare "
+"l'interfaccia grafica di <application>Amministrazione della rete</"
+"application>, o procedere manualmente, modificando i file di configurazione "
+"di rete e di <abbrev>IPsec</abbrev>."
#. Tag: para
#, no-c-format
-msgid "To connect two network-connected hosts via IPsec, refer to <xref linkend=\"sect-Security_Guide-Virtual_Private_Networks_VPNs-IPsec_Host_to_Host_Configuration\" />."
+msgid ""
+"To connect two network-connected hosts via IPsec, refer to <xref linkend="
+"\"sect-Security_Guide-Virtual_Private_Networks_VPNs-"
+"IPsec_Host_to_Host_Configuration\" />."
msgstr ""
+"Per connettere due host attraverso IPsec, andare alla <xref linkend=\"sect-"
+"Security_Guide-Virtual_Private_Networks_VPNs-IPsec_Host_to_Host_Configuration"
+"\" />."
#. Tag: para
#, no-c-format
-msgid "To connect one <acronym>LAN</acronym>/<acronym>WAN</acronym> to another via IPsec, refer to <xref linkend=\"sect-Security_Guide-Virtual_Private_Networks_VPNs-IPsec_Network_to_Network_Configuration\" />."
+msgid ""
+"To connect one <acronym>LAN</acronym>/<acronym>WAN</acronym> to another via "
+"IPsec, refer to <xref linkend=\"sect-Security_Guide-"
+"Virtual_Private_Networks_VPNs-IPsec_Network_to_Network_Configuration\" />."
msgstr ""
+"Per connettere due <acronym>LAN</acronym>/<acronym>WAN</acronym> attraverso "
+"IPsec, andare alla <xref linkend=\"sect-Security_Guide-"
+"Virtual_Private_Networks_VPNs-IPsec_Network_to_Network_Configuration\" />."
#. Tag: title
#, no-c-format
msgid "IPsec Host-to-Host Configuration"
-msgstr ""
+msgstr "Configurazione Host-to-Host"
#. Tag: para
#, no-c-format
-msgid "IPsec can be configured to connect one desktop or workstation (host) to another using a host-to-host connection. This type of connection uses the network to which each host is connected to create a secure tunnel between each host. The requirements of a host-to-host connection are minimal, as is the configuration of <abbrev>IPsec</abbrev> on each host. The hosts need only a dedicated connection to a carrier network (such as the Internet) and &PROD; to create the <abbrev>IPsec</abbrev> connection."
+msgid ""
+"IPsec can be configured to connect one desktop or workstation (host) to "
+"another using a host-to-host connection. This type of connection uses the "
+"network to which each host is connected to create a secure tunnel between "
+"each host. The requirements of a host-to-host connection are minimal, as is "
+"the configuration of <abbrev>IPsec</abbrev> on each host. The hosts need "
+"only a dedicated connection to a carrier network (such as the Internet) and "
+"&PROD; to create the <abbrev>IPsec</abbrev> connection."
msgstr ""
+"IPsec può essere configurato per collegare due desktop o workstation (host), "
+"usando una connessione host-to host. Questo tipo di connessione usa la rete "
+"intermedia tra i due host, per creare un tunnel sicuro, attraverso il quale "
+"viaggiano i dati cifrati ed autenticati. Le specifiche richieste per creare "
+"una connessione host-to-host sono minime, come risulta la configurazione di "
+"<abbrev>IPsec</abbrev> su ciascun host. Gli host necessitano solo di una "
+"connessione alla rete e di un sistema &PROD; per creare la connessione "
+"<abbrev>IPsec</abbrev>."
#. Tag: title
#, no-c-format
msgid "Host-to-Host Connection"
-msgstr ""
+msgstr "Configurazione automatica"
#. Tag: para
#, no-c-format
-msgid "A host-to-host <abbrev>IPsec</abbrev> connection is an encrypted connection between two systems, both running <abbrev>IPsec</abbrev> with the same authentication key. With the <abbrev>IPsec</abbrev> connection active, any network traffic between the two hosts is encrypted."
+msgid ""
+"A host-to-host <abbrev>IPsec</abbrev> connection is an encrypted connection "
+"between two systems, both running <abbrev>IPsec</abbrev> with the same "
+"authentication key. With the <abbrev>IPsec</abbrev> connection active, any "
+"network traffic between the two hosts is encrypted."
msgstr ""
+"Una connessione Host-to-Host <abbrev>IPsec</abbrev>, risulta cifrata, ed "
+"entrambi i sistemi eseguono <abbrev>IPsec</abbrev> con la stessa chiave di "
+"autenticazione."
#. Tag: para
#, no-c-format
-msgid "To configure a host-to-host <abbrev>IPsec</abbrev> connection, use the following steps for each host:"
+msgid ""
+"To configure a host-to-host <abbrev>IPsec</abbrev> connection, use the "
+"following steps for each host:"
msgstr ""
+"Per configurare una connessione host-to-host, procedere su ciascun host, "
+"come indicato :"
#. Tag: title
-#, fuzzy, no-c-format
+#, no-c-format
msgid "Note"
-msgstr "Note"
+msgstr "Nota"
#. Tag: para
#, no-c-format
-msgid "You should perform the following procedures on the actual machine that you are configuring. Avoid attempting to configure and establish <abbrev>IPsec</abbrev> connections remotely."
+msgid ""
+"You should perform the following procedures on the actual machine that you "
+"are configuring. Avoid attempting to configure and establish <abbrev>IPsec</"
+"abbrev> connections remotely."
msgstr ""
+"Le seguenti procedure dovrebbero essere eseguite direttamente dalla "
+"macchina: si raccomanda di evitare configurazioni e connessioni "
+"<abbrev>IPsec</abbrev> da remoto."
#. Tag: para
#, no-c-format
-msgid "In a command shell, type <command>system-config-network</command> to start the <application>Network Administration Tool</application>."
+msgid ""
+"In a command shell, type <command>system-config-network</command> to start "
+"the <application>Network Administration Tool</application>."
msgstr ""
+"In un terminale, digitare <command>system-config-network</command>, per "
+"avviare l'interfaccia grafica di <application>Amministrazione della rete</"
+"application>, oppure dal menu d'avvio, selezionare <guimenu>File</guimenu> "
+"=> <guimenuitem> => Amministrazione => </"
+"guimenuitem><guimenuitem>Rete</guimenuitem>."
#. Tag: para
#, no-c-format
-msgid "On the <guilabel>IPsec</guilabel> tab, click <guibutton>New</guibutton> to start the <abbrev>IPsec</abbrev> configuration wizard."
+msgid ""
+"On the <guilabel>IPsec</guilabel> tab, click <guibutton>New</guibutton> to "
+"start the <abbrev>IPsec</abbrev> configuration wizard."
msgstr ""
+"Nella scheda <guilabel>IPsec</guilabel>, premere sul pulsante "
+"<guibutton>Nuovo</guibutton>, per avviare la procedura guidata di "
+"configurazione."
#. Tag: para
#, no-c-format
-msgid "Click <guibutton>Forward</guibutton> to start configuring a host-to-host <abbrev>IPsec</abbrev> connection."
+msgid ""
+"Click <guibutton>Forward</guibutton> to start configuring a host-to-host "
+"<abbrev>IPsec</abbrev> connection."
msgstr ""
+"Premere <guibutton>Avanti</guibutton>, per procedere con la configurazione."
#. Tag: para
#, no-c-format
-msgid "Enter a unique name for the connection, for example, <userinput>ipsec0</userinput>. If required, select the check box to automatically activate the connection when the computer starts. Click <guibutton>Forward</guibutton> to continue."
+msgid ""
+"Enter a unique name for the connection, for example, <userinput>ipsec0</"
+"userinput>. If required, select the check box to automatically activate the "
+"connection when the computer starts. Click <guibutton>Forward</guibutton> to "
+"continue."
msgstr ""
+"Inserire un nome per indicare la connessione, per esempio <userinput>ipsec0</"
+"userinput>. Se si desidera attivare automaticamente la connessione all'avvio "
+"del computer, attivare la casella di controllo. Premere <guibutton>Avanti</"
+"guibutton> per continuare."
#. Tag: para
#, no-c-format
-msgid "Select <guilabel>Host to Host encryption</guilabel> as the connection type, and then click <guibutton>Forward</guibutton>."
+msgid ""
+"Select <guilabel>Host to Host encryption</guilabel> as the connection type, "
+"and then click <guibutton>Forward</guibutton>."
msgstr ""
+"Selezionare <guilabel>Crittografia da Host to Host</guilabel> e poi premere "
+"<guibutton>Avanti</guibutton>."
#. Tag: para
#, no-c-format
msgid "Select the type of encryption to use: manual or automatic."
-msgstr ""
+msgstr "Selezionare il tipo di cifratura da usare: manuale o automatica."
#. Tag: para
#, no-c-format
-msgid "If you select manual encryption, an encryption key must be provided later in the process. If you select automatic encryption, the <command>racoon</command> daemon manages the encryption key. The <filename>ipsec-tools</filename> package must be installed if you want to use automatic encryption."
+msgid ""
+"If you select manual encryption, an encryption key must be provided later in "
+"the process. If you select automatic encryption, the <command>racoon</"
+"command> daemon manages the encryption key. The <filename>ipsec-tools</"
+"filename> package must be installed if you want to use automatic encryption."
msgstr ""
+"Se si sceglie la cifratura manuale, successivamente occorrerà fornire una "
+"chiave. Se invece si seleziona la cifratura automatica, sarà il demone "
+"<command>racoon</command> a creare una chiave di cifratura."
#. Tag: para
#, no-c-format
msgid "Click <guibutton>Forward</guibutton> to continue."
-msgstr ""
+msgstr "Premere <guibutton>Avanti</guibutton> per continuare."
#. Tag: para
#, no-c-format
msgid "Enter the IP address of the remote host."
-msgstr ""
+msgstr "Inserire l'indirizzo IP dell'host remoto."
#. Tag: para
#, no-c-format
-msgid "To determine the IP address of the remote host, use the following command <emphasis>on the remote host</emphasis>:"
+msgid ""
+"To determine the IP address of the remote host, use the following command "
+"<emphasis>on the remote host</emphasis>:"
msgstr ""
+"Per determinare l'IP dell'host remoto, usare il seguente comando, "
+"<emphasis>sull'host remoto</emphasis>:"
#. Tag: screen
#, no-c-format
-msgid "[root at myServer ~] # /sbin/ifconfig <replaceable><device></replaceable>"
+msgid ""
+"[root at myServer ~] # /sbin/ifconfig <replaceable><device></"
+"replaceable>"
msgstr ""
+"[root at myServer ~] # /sbin/ifconfig <replaceable><device></"
+"replaceable>"
#. Tag: para
#, no-c-format
-msgid "where <replaceable><device></replaceable> is the Ethernet device that you want to use for the <abbrev>VPN</abbrev> connection."
+msgid ""
+"where <replaceable><device></replaceable> is the Ethernet device "
+"that you want to use for the <abbrev>VPN</abbrev> connection."
msgstr ""
+"dove <replaceable><device></replaceable> è la scheda di rete "
+"(Ethernet) usata per la connessione <abbrev>VPN</abbrev>."
#. Tag: para
#, no-c-format
-msgid "If only one Ethernet card exists in the system, the device name is typically eth0. The following example shows the relevant information from this command (note that this is an example output only):"
+msgid ""
+"If only one Ethernet card exists in the system, the device name is typically "
+"eth0. The following example shows the relevant information from this command "
+"(note that this is an example output only):"
msgstr ""
+"Se è presente una sola scheda di rete nel sistema, il dispositivo "
+"tipicamente è denominato eth0. Di seguito si riporta un esempio di output di "
+"questo comando:"
#. Tag: screen
#, no-c-format
@@ -250,156 +569,293 @@
"eth0 Link encap:Ethernet HWaddr 00:0C:6E:E8:98:1D\n"
" inet addr:172.16.44.192 Bcast:172.16.45.255 Mask:255.255.254.0"
msgstr ""
+"eth0 Link encap:Ethernet HWaddr 00:0C:6E:E8:98:1D\n"
+" inet addr:172.16.44.192 Bcast:172.16.45.255 Mask:255.255.254.0"
#. Tag: para
#, no-c-format
-msgid "The IP address is the number following the <computeroutput>inet addr:</computeroutput> label."
+msgid ""
+"The IP address is the number following the <computeroutput>inet addr:</"
+"computeroutput> label."
msgstr ""
+"L'indirizzo IP è dato dall'etichetta <computeroutput>inet addr:</"
+"computeroutput>."
#. Tag: para
#, no-c-format
-msgid "For host-to-host connections, both hosts should have a public, routable address. Alternatively, both hosts can have a private, non-routable address (for example, from the 10.x.x.x or 192.168.x.x ranges) as long as they are on the same LAN."
+msgid ""
+"For host-to-host connections, both hosts should have a public, routable "
+"address. Alternatively, both hosts can have a private, non-routable address "
+"(for example, from the 10.x.x.x or 192.168.x.x ranges) as long as they are "
+"on the same LAN."
msgstr ""
+"Per connessioni host-to-host, entrambi gli host devono possedere un "
+"indirizzo pubblico. Altrimenti, se si trovano sulla stessa LAN, possono "
+"avere un indirizzo privato (p.e.dalla rete 10.x.x.x o 192.168.x.x)."
#. Tag: para
#, no-c-format
-msgid "If the hosts are on different LANs, or one has a public address while the other has a private address, refer to <xref linkend=\"sect-Security_Guide-Virtual_Private_Networks_VPNs-IPsec_Network_to_Network_Configuration\" />."
+msgid ""
+"If the hosts are on different LANs, or one has a public address while the "
+"other has a private address, refer to <xref linkend=\"sect-Security_Guide-"
+"Virtual_Private_Networks_VPNs-IPsec_Network_to_Network_Configuration\" />."
msgstr ""
+"Nel caso i due host si trovino su differenti LAN, oppure se un host abbia un "
+"indirizzo pubblico e l'altro un indirizzo privato, vedere la <xref linkend="
+"\"sect-Security_Guide-Virtual_Private_Networks_VPNs-"
+"IPsec_Network_to_Network_Configuration\" />."
#. Tag: para
#, no-c-format
-msgid "If manual encryption was selected in step <xref linkend=\"list-Security_Guide-list-Security_Guide-list-Security_Guide-st-host-encrypt-type\" />, specify the encryption key to use, or click <guibutton>Generate</guibutton> to create one."
+msgid ""
+"If manual encryption was selected in step <xref linkend=\"list-"
+"Security_Guide-list-Security_Guide-list-Security_Guide-st-host-encrypt-type"
+"\" />, specify the encryption key to use, or click <guibutton>Generate</"
+"guibutton> to create one."
msgstr ""
+"Se al passo 8, è stata selezionata la cifratura manuale, specificare la "
+"chiave di cifratura da usare, o premere <guibutton>Genera</guibutton>, per "
+"crearne una."
#. Tag: para
#, no-c-format
-msgid "Specify an authentication key or click <guibutton>Generate</guibutton> to generate one. It can be any combination of numbers and letters."
+msgid ""
+"Specify an authentication key or click <guibutton>Generate</guibutton> to "
+"generate one. It can be any combination of numbers and letters."
msgstr ""
+"specificare una chiave di autenticazione, o premere <guibutton>Genera</"
+"guibutton>, per crearne una. Si possono usare lettere e numeri."
#. Tag: para
#, no-c-format
-msgid "Verify the information on the <guilabel>IPsec — Summary</guilabel> page, and then click <guibutton>Apply</guibutton>."
+msgid ""
+"Verify the information on the <guilabel>IPsec — Summary</guilabel> "
+"page, and then click <guibutton>Apply</guibutton>."
msgstr ""
+"Nella pagina <guilabel>IPsec — Sommario</guilabel>, rivedere le "
+"informazioni inserite, e poi premere <guibutton>Applica</guibutton>."
#. Tag: para
#, no-c-format
-msgid "Click <guimenu>File</guimenu> => <guimenuitem>Save</guimenuitem> to save the configuration."
+msgid ""
+"Click <guimenu>File</guimenu> => <guimenuitem>Save</guimenuitem> to save "
+"the configuration."
msgstr ""
+"Per salvare la configurazione creata, premere <guimenu>File</guimenu> => "
+"<guimenuitem>Salva</guimenuitem>."
#. Tag: para
#, no-c-format
-msgid "You may need to restart the network for the changes to take effect. To restart the network, use the following command:"
+msgid ""
+"You may need to restart the network for the changes to take effect. To "
+"restart the network, use the following command:"
msgstr ""
+"Per rendere effettive le modifiche potrebbe essere necessario riavviare la "
+"rete. Usare il seguente comando:"
#. Tag: screen
#, no-c-format
msgid "[root at myServer ~]# service network restart"
-msgstr ""
+msgstr "[root at myServer ~]# service network restart"
#. Tag: para
#, no-c-format
-msgid "Select the <abbrev>IPsec</abbrev> connection from the list and click the <guibutton>Activate</guibutton> button."
+msgid ""
+"Select the <abbrev>IPsec</abbrev> connection from the list and click the "
+"<guibutton>Activate</guibutton> button."
msgstr ""
+"Dalla lista delle connessioni <abbrev>IPsec</abbrev>. selezionare la "
+"connessione appena creata e premere il pulsante <guibutton>Attiva</"
+"guibutton>."
#. Tag: para
#, no-c-format
-msgid "Repeat the entire procedure for the other host. It is essential that the same keys from step <xref linkend=\"list-Security_Guide-list-Security_Guide-list-Security_Guide-st-host-to-host-keys\" /> be used on the other hosts. Otherwise, <abbrev>IPsec</abbrev> will not work."
+msgid ""
+"Repeat the entire procedure for the other host. It is essential that the "
+"same keys from step <xref linkend=\"list-Security_Guide-list-Security_Guide-"
+"list-Security_Guide-st-host-to-host-keys\" /> be used on the other hosts. "
+"Otherwise, <abbrev>IPsec</abbrev> will not work."
msgstr ""
+"Ripetere l'intera procedura sull'altro host, prestando particolare "
+"attenzione ad usare le stesse chiavi usate nel passo 8, sul primo host. Pena "
+"il non funzionamento di <abbrev>IPsec</abbrev>."
#. Tag: para
#, no-c-format
-msgid "After configuring the <abbrev>IPsec</abbrev> connection, it appears in the <abbrev>IPsec</abbrev> list as shown in <xref linkend=\"figu-Security_Guide-Host_to_Host_Connection-IPsec_Connection\" />."
+msgid ""
+"After configuring the <abbrev>IPsec</abbrev> connection, it appears in the "
+"<abbrev>IPsec</abbrev> list as shown in <xref linkend=\"figu-Security_Guide-"
+"Host_to_Host_Connection-IPsec_Connection\" />."
msgstr ""
+"Dopo aver configurato la connessione <abbrev>IPsec</abbrev>, essa compare "
+"nella scheda di <abbrev>IPsec</abbrev>, come indicato in <xref linkend="
+"\"figu-Security_Guide-Host_to_Host_Connection-IPsec_Connection\" />."
#. Tag: title
#, no-c-format
msgid "IPsec Connection"
-msgstr ""
+msgstr "Una connessione IPsec"
#. Tag: para
#, no-c-format
-msgid "The following files are created when the <abbrev>IPsec</abbrev> connection is configured:"
-msgstr ""
+msgid ""
+"The following files are created when the <abbrev>IPsec</abbrev> connection "
+"is configured:"
+msgstr "Alla fine del processo di creazione, vengono generati i seguenti file:"
#. Tag: para
#, no-c-format
-msgid "<filename>/etc/sysconfig/network-scripts/ifcfg-<replaceable><nickname></replaceable></filename>"
+msgid ""
+"<filename>/etc/sysconfig/network-scripts/ifcfg-<replaceable><"
+"nickname></replaceable></filename>"
msgstr ""
+"<filename>/etc/sysconfig/network-scripts/ifcfg-<replaceable><"
+"nickname></replaceable></filename>"
#. Tag: para
#, no-c-format
-msgid "<filename>/etc/sysconfig/network-scripts/keys-<replaceable><nickname></replaceable></filename>"
+msgid ""
+"<filename>/etc/sysconfig/network-scripts/keys-<replaceable><nickname>"
+"</replaceable></filename>"
msgstr ""
+"<filename>/etc/sysconfig/network-scripts/keys-<replaceable><nickname>"
+"</replaceable></filename>"
#. Tag: para
#, no-c-format
-msgid "<filename>/etc/racoon/<replaceable><remote-ip></replaceable>.conf</filename>"
+msgid ""
+"<filename>/etc/racoon/<replaceable><remote-ip></replaceable>.conf</"
+"filename>"
msgstr ""
+"<filename>/etc/racoon/<replaceable><remote-ip></replaceable>.conf</"
+"filename>"
#. Tag: para
-#, fuzzy, no-c-format
+#, no-c-format
msgid "<filename>/etc/racoon/psk.txt</filename>"
-msgstr "Aggiungere una voce a <filename>/etc/fstab</filename>"
+msgstr "<filename>/etc/racoon/psk.txt</filename>"
#. Tag: para
#, no-c-format
-msgid "If automatic encryption is selected, <filename>/etc/racoon/racoon.conf</filename> is also created."
+msgid ""
+"If automatic encryption is selected, <filename>/etc/racoon/racoon.conf</"
+"filename> is also created."
msgstr ""
+"Se è stata usata la cifratura automatica, verrà creato anche il file "
+"<filename>/etc/racoon/racoon.conf</filename>."
#. Tag: para
#, no-c-format
-msgid "When the interface is up, <filename>/etc/racoon/racoon.conf</filename> is modified to include <filename><replaceable><remote-ip></replaceable>.conf</filename>."
+msgid ""
+"When the interface is up, <filename>/etc/racoon/racoon.conf</filename> is "
+"modified to include <filename><replaceable><remote-ip></replaceable>."
+"conf</filename>."
msgstr ""
+"Quando è attiva l'interfaccia, il file <filename>/etc/racoon/racoon.conf</"
+"filename> viene modificato per includere <filename><replaceable><remote-"
+"ip></replaceable>.conf</filename>."
#. Tag: title
#, no-c-format
msgid "Manual <abbrev>IPsec</abbrev> Host-to-Host Configuration"
-msgstr ""
+msgstr "Configurazione manuale"
#. Tag: para
#, no-c-format
-msgid "The first step in creating a connection is to gather system and network information from each workstation. For a host-to-host connection, you need the following:"
+msgid ""
+"The first step in creating a connection is to gather system and network "
+"information from each workstation. For a host-to-host connection, you need "
+"the following:"
msgstr ""
+"Prima di procedere, recuperare le informazioni di sistema e di rete su ogni "
+"workstation. Per una connessione host-to-host, occorre conoscere:"
#. Tag: para
#, no-c-format
msgid "The IP address of each host"
-msgstr ""
+msgstr "L'indirizzo IP degli host"
#. Tag: para
#, no-c-format
-msgid "A unique name, for example, <computeroutput>ipsec1</computeroutput>. This is used to identify the <abbrev>IPsec</abbrev> connection and to distinguish it from other devices or connections."
+msgid ""
+"A unique name, for example, <computeroutput>ipsec1</computeroutput>. This is "
+"used to identify the <abbrev>IPsec</abbrev> connection and to distinguish it "
+"from other devices or connections."
msgstr ""
+"Un nome unico (p.e. <computeroutput>ipsec1</computeroutput>), identificativo "
+"della connessione <abbrev>IPsec</abbrev>."
#. Tag: para
#, no-c-format
-msgid "A fixed encryption key or one automatically generated by <command>racoon</command>."
+msgid ""
+"A fixed encryption key or one automatically generated by <command>racoon</"
+"command>."
msgstr ""
+"Una chiave condivisa di cifratura, magari generata in automatico da "
+"<command>racoon</command>."
#. Tag: para
#, no-c-format
-msgid "A pre-shared authentication key that is used during the initial stage of the connection and to exchange encryption keys during the session."
+msgid ""
+"A pre-shared authentication key that is used during the initial stage of the "
+"connection and to exchange encryption keys during the session."
msgstr ""
+"Una chiave di autenticazione pre-condivisa, usata durante la fase iniziale "
+"della connessione e per lo scambio delle chiavi cifrate durante la sessione."
#. Tag: para
#, no-c-format
-msgid "For example, suppose Workstation A and Workstation B want to connect to each other through an <abbrev>IPsec</abbrev> tunnel. They want to connect using a pre-shared key with the value of <computeroutput>Key_Value01</computeroutput>, and the users agree to let <command>racoon</command> automatically generate and share an authentication key between each host. Both host users decide to name their connections <computeroutput>ipsec1</computeroutput>."
+msgid ""
+"For example, suppose Workstation A and Workstation B want to connect to each "
+"other through an <abbrev>IPsec</abbrev> tunnel. They want to connect using a "
+"pre-shared key with the value of <computeroutput>Key_Value01</"
+"computeroutput>, and the users agree to let <command>racoon</command> "
+"automatically generate and share an authentication key between each host. "
+"Both host users decide to name their connections <computeroutput>ipsec1</"
+"computeroutput>."
msgstr ""
+"Per esempio si supponga di voler creare un tunnel <abbrev>IPsec</abbrev> tra "
+"due workstation. Si decide di usare un chiave pre-condivisa il cui valore è "
+"<computeroutput>Key_Value01</computeroutput>, di usare <command>racoon</"
+"command>, per generare automaticamente una chiave e di condividere una "
+"chiave di autenticazione. Il nome della connessione sia "
+"<computeroutput>ipsec1</computeroutput>."
#. Tag: para
#, no-c-format
-msgid "You should choose a PSK that uses a mixture of upper- and lower-case characters, numbers and punctuation. An easily-guessable PSK constitutes a security risk."
+msgid ""
+"You should choose a PSK that uses a mixture of upper- and lower-case "
+"characters, numbers and punctuation. An easily-guessable PSK constitutes a "
+"security risk."
msgstr ""
+"Si consiglia di usare una chiave PSK che sia una combinazione di lettere "
+"maiuscole/minuscole, numeri e caratteri di punteggiatura. Una chiave facile "
+"da scoprire costituisce un rischio alla sicurezza."
#. Tag: para
#, no-c-format
-msgid "It is not necessary to use the same connection name for each host. You should choose a name that is convenient and meaningful for your installation."
+msgid ""
+"It is not necessary to use the same connection name for each host. You "
+"should choose a name that is convenient and meaningful for your installation."
msgstr ""
+"Non è necessario usare, sui due host, lo stesso nome per la connessione. Si "
+"potrebbe scegliere un nome che sia significativo per la propria "
+"installazione."
#. Tag: para
#, no-c-format
-msgid "The following is the <abbrev>IPsec</abbrev> configuration file for Workstation A for a host-to-host <abbrev>IPsec</abbrev> connection with Workstation B. The unique name to identify the connection in this example is <replaceable>ipsec1</replaceable>, so the resulting file is called <filename>/etc/sysconfig/network-scripts/ifcfg-ipsec1</filename>."
+msgid ""
+"The following is the <abbrev>IPsec</abbrev> configuration file for "
+"Workstation A for a host-to-host <abbrev>IPsec</abbrev> connection with "
+"Workstation B. The unique name to identify the connection in this example is "
+"<replaceable>ipsec1</replaceable>, so the resulting file is called "
+"<filename>/etc/sysconfig/network-scripts/ifcfg-ipsec1</filename>."
msgstr ""
+"Di seguito si riporta il file di configurazione di <abbrev>IPsec</abbrev>, "
+"per la prima workstation. L'identificativo della connessione usato "
+"nell'esempio è <replaceable>ipsec1</replaceable>, per cui il file di "
+"configurazione è <filename>/etc/sysconfig/network-scripts/ifcfg-ipsec1</"
+"filename>:"
#. Tag: screen
#, no-c-format
@@ -408,46 +864,93 @@
"ONBOOT=no\n"
"IKE_METHOD=PSK"
msgstr ""
+"DST=<replaceable>X.X.X.X</replaceable>TYPE=IPSEC\n"
+"ONBOOT=no\n"
+"IKE_METHOD=PSK"
#. Tag: para
#, no-c-format
-msgid "For Workstation A, <replaceable>X.X.X.X</replaceable> is the IP address of Workstation B. For Workstation B, <replaceable>X.X.X.X</replaceable> is the IP address of Workstation A. This connection is not set to initiate on boot-up (<computeroutput>ONBOOT=no</computeroutput>) and it uses the pre-shared key method of authentication (<computeroutput>IKE_METHOD=PSK</computeroutput>)."
+msgid ""
+"For Workstation A, <replaceable>X.X.X.X</replaceable> is the IP address of "
+"Workstation B. For Workstation B, <replaceable>X.X.X.X</replaceable> is the "
+"IP address of Workstation A. This connection is not set to initiate on boot-"
+"up (<computeroutput>ONBOOT=no</computeroutput>) and it uses the pre-shared "
+"key method of authentication (<computeroutput>IKE_METHOD=PSK</"
+"computeroutput>)."
msgstr ""
+"<replaceable>X.X.X.X</replaceable> è l'indirizzo IP dell'altra workstation. "
+"La connessione è configurata in modo da non avviarsi al boot del sistema "
+"(<computeroutput>ONBOOT=no</computeroutput>) e in modo da usare il metodo di "
+"autenticazione della chiave pre-condivisa (<computeroutput>IKE_METHOD=PSK</"
+"computeroutput>)."
#. Tag: para
#, no-c-format
-msgid "The following is the content of the pre-shared key file (called <filename>/etc/sysconfig/network-scripts/keys-ipsec1</filename>) that both workstations need to authenticate each other. The contents of this file should be identical on both workstations, and only the root user should be able to read or write this file."
+msgid ""
+"The following is the content of the pre-shared key file (called <filename>/"
+"etc/sysconfig/network-scripts/keys-ipsec1</filename>) that both workstations "
+"need to authenticate each other. The contents of this file should be "
+"identical on both workstations, and only the root user should be able to "
+"read or write this file."
msgstr ""
+"Di seguito si mostra il contenuto del file della chiave pre-condivisa, "
+"<filename>/etc/sysconfig/network-scripts/keys-ipsec1</filename>, usato da "
+"entrambe le workstation per autenticarsi. Il suo contenuto dovrebbe essere "
+"identico nelle due workstation, il cui accesso in lettura/scrittura, "
+"dovrebbe essere consentito solo all'utente root."
#. Tag: screen
#, no-c-format
msgid "IKE_PSK=Key_Value01"
-msgstr ""
+msgstr "IKE_PSK=Key_Value01"
#. Tag: title
#, no-c-format
msgid "Important"
-msgstr ""
+msgstr "Importante"
#. Tag: para
#, no-c-format
-msgid "To change the <filename>keys-ipsec1</filename> file so that only the root user can read or edit the file, use the following command after creating the file:"
+msgid ""
+"To change the <filename>keys-ipsec1</filename> file so that only the root "
+"user can read or edit the file, use the following command after creating the "
+"file:"
msgstr ""
+"Per modificare i permessi al file <filename>keys-ipsec1</filename> in modo "
+"che solo l'utente root possa leggere o modificare il file, usare il seguente "
+"comando:"
#. Tag: screen
#, no-c-format
-msgid "[root at myServer ~] # chmod 600 /etc/sysconfig/network-scripts/keys-ipsec1"
+msgid ""
+"[root at myServer ~] # chmod 600 /etc/sysconfig/network-scripts/keys-ipsec1"
msgstr ""
+"[root at myServer ~] # chmod 600 /etc/sysconfig/network-scripts/keys-ipsec1"
#. Tag: para
#, no-c-format
-msgid "To change the authentication key at any time, edit the <filename>keys-ipsec1</filename> file on both workstations. <emphasis>Both authentication keys must be identical for proper connectivity</emphasis>."
-msgstr ""
+msgid ""
+"To change the authentication key at any time, edit the <filename>keys-"
+"ipsec1</filename> file on both workstations. <emphasis>Both authentication "
+"keys must be identical for proper connectivity</emphasis>."
+msgstr " "
#. Tag: para
#, no-c-format
-msgid "The next example shows the specific configuration for the phase 1 connection to the remote host. The file is called <filename><replaceable>X.X.X.X</replaceable>.conf</filename>, where <replaceable>X.X.X.X</replaceable> is the IP address of the remote <abbrev>IPsec</abbrev> host. Note that this file is automatically generated when the <abbrev>IPsec</abbrev> tunnel is activated and should not be edited directly."
+msgid ""
+"The next example shows the specific configuration for the phase 1 connection "
+"to the remote host. The file is called <filename><replaceable>X.X.X.X</"
+"replaceable>.conf</filename>, where <replaceable>X.X.X.X</replaceable> is "
+"the IP address of the remote <abbrev>IPsec</abbrev> host. Note that this "
+"file is automatically generated when the <abbrev>IPsec</abbrev> tunnel is "
+"activated and should not be edited directly."
msgstr ""
+"Il successivo esempio, mostra la configurazione propria alla fase 1 della "
+"connessione con l'host remoto. Il file è denominato <filename><replaceable>X."
+"X.X.X</replaceable>.conf</filename>, in cui <replaceable>X.X.X.X</"
+"replaceable> è l'indirizzo IP dell'host remoto. Notare che questo file è "
+"generato automaticamente all'avvio del tunnel <abbrev>IPsec</abbrev> e non "
+"dovrebbe essere eplicitamente modificato."
#. Tag: screen
#, no-c-format
@@ -463,97 +966,171 @@
"\t}\n"
"}"
msgstr ""
+"remote <replaceable>X.X.X.X</replaceable>{\n"
+" exchange_mode aggressive, main;\n"
+"\t my_identifier address;\n"
+"\t proposal {\n"
+"\t \tencryption_algorithm 3des;\n"
+"\t\thash_algorithm sha1;\n"
+"\t\tauthentication_method pre_shared_key;\n"
+"\t\tdh_group 2 ;\n"
+"\t}\n"
+"}"
#. Tag: para
#, no-c-format
-msgid "The default phase 1 configuration file that is created when an <abbrev>IPsec</abbrev> connection is initialized contains the following statements used by the &PROD; implementation of IPsec:"
+msgid ""
+"The default phase 1 configuration file that is created when an "
+"<abbrev>IPsec</abbrev> connection is initialized contains the following "
+"statements used by the &PROD; implementation of IPsec:"
msgstr ""
+"Il file di configurazione della fase 1 viene creato durante "
+"l'inizializzazione della connessione <abbrev>IPsec</abbrev> e contiene le "
+"seguenti istruzioni usate dall'implementazione di IPsec in Fedora:"
#. Tag: term
#, no-c-format
msgid "remote <replaceable>X.X.X.X</replaceable>"
-msgstr ""
+msgstr "remote <replaceable>X.X.X.X</replaceable>"
#. Tag: para
#, no-c-format
-msgid "Specifies that the subsequent stanzas of this configuration file apply only to the remote node identified by the <replaceable>X.X.X.X</replaceable> IP address."
+msgid ""
+"Specifies that the subsequent stanzas of this configuration file apply only "
+"to the remote node identified by the <replaceable>X.X.X.X</replaceable> IP "
+"address."
msgstr ""
+"Specifica che le successive istruzioni di questo file si applicano solo al "
+"nodo remoto identificato dall'indirizzo IP <replaceable>X.X.X.X</"
+"replaceable>."
#. Tag: term
#, no-c-format
msgid "exchange_mode aggressive"
-msgstr ""
+msgstr "exchange_mode aggressive"
#. Tag: para
#, no-c-format
-msgid "The default configuration for <abbrev>IPsec</abbrev> on &PROD; uses an aggressive authentication mode, which lowers the connection overhead while allowing configuration of several <abbrev>IPsec</abbrev> connections with multiple hosts."
+msgid ""
+"The default configuration for <abbrev>IPsec</abbrev> on &PROD; uses an "
+"aggressive authentication mode, which lowers the connection overhead while "
+"allowing configuration of several <abbrev>IPsec</abbrev> connections with "
+"multiple hosts."
msgstr ""
+"La configurazione predefinita di <abbrev>IPsec</abbrev> in &PROD; usa un "
+"metodo di autenticazione, che riduce il sovraccarico di connessione per "
+"permettere di configurare connessioni <abbrev>IPsec</abbrev> con host "
+"multipli."
#. Tag: term
#, no-c-format
msgid "my_identifier address"
-msgstr ""
+msgstr "my_identifier address"
#. Tag: para
#, no-c-format
-msgid "Specifies the identification method to use when authenticating nodes. &PROD; uses IP addresses to identify nodes."
+msgid ""
+"Specifies the identification method to use when authenticating nodes. &PROD; "
+"uses IP addresses to identify nodes."
msgstr ""
+"Specifica il metodo di identificazione da usare per l'autenticazione dei "
+"nodi. Fedora usa gli indirizzi IP per identificare i nodi."
#. Tag: term
#, no-c-format
msgid "encryption_algorithm 3des"
-msgstr ""
+msgstr "encryption_algorithm 3des"
#. Tag: para
#, no-c-format
-msgid "Specifies the encryption cipher used during authentication. By default, <firstterm>Triple Data Encryption Standard</firstterm> (<acronym>3DES</acronym>) is used."
+msgid ""
+"Specifies the encryption cipher used during authentication. By default, "
+"<firstterm>Triple Data Encryption Standard</firstterm> (<acronym>3DES</"
+"acronym>) is used."
msgstr ""
+"Specifica il metodo di cifratura da usare durante l'autenticazione. Per "
+"impostazione, si usa <acronym>3DES</acronym> (<firstterm>Triple Data "
+"Encryption Standard</firstterm>)."
#. Tag: term
#, no-c-format
msgid "hash_algorithm sha1;"
-msgstr ""
+msgstr "hash_algorithm sha1;"
#. Tag: para
#, no-c-format
-msgid "Specifies the hash algorithm used during phase 1 negotiation between nodes. By default, Secure Hash Algorithm version 1 is used."
+msgid ""
+"Specifies the hash algorithm used during phase 1 negotiation between nodes. "
+"By default, Secure Hash Algorithm version 1 is used."
msgstr ""
+"Specifica l'algoritmo hash da usare durante la negoziazione tra i nodi della "
+"fase 1. Per impostazione, si usa Secure Hash Algorithm version 1."
#. Tag: term
#, no-c-format
msgid "authentication_method pre_shared_key"
-msgstr ""
+msgstr "authentication_method pre_shared_key"
#. Tag: para
#, no-c-format
-msgid "Specifies the authentication method used during node negotiation. By default, &PROD; uses pre-shared keys for authentication."
+msgid ""
+"Specifies the authentication method used during node negotiation. By "
+"default, &PROD; uses pre-shared keys for authentication."
msgstr ""
+"Specifica il metodo di autenticazione da usare durante la negoziazione. Per "
+"impostazione, &PROD; usa chiavi pre-condivise."
#. Tag: term
#, no-c-format
msgid "dh_group 2"
-msgstr ""
+msgstr "dh_group 2"
#. Tag: para
#, no-c-format
-msgid "Specifies the Diffie-Hellman group number for establishing dynamically-generated session keys. By default, modp1024 (group 2) is used."
+msgid ""
+"Specifies the Diffie-Hellman group number for establishing dynamically-"
+"generated session keys. By default, modp1024 (group 2) is used."
msgstr ""
+"Specifica il numero di gruppo Diffie-Hellman per stabilire chiavi di "
+"sessione generate dinamicamente. Per impostazione, si usa modp1024 (group 2)."
#. Tag: title
#, no-c-format
msgid "The Racoon Configuration File"
-msgstr ""
+msgstr "Il file di configurazione di racoon"
#. Tag: para
#, no-c-format
-msgid "The <filename>/etc/racoon/racoon.conf</filename> files should be identical on all <abbrev>IPsec</abbrev> nodes <emphasis>except</emphasis> for the <command>include "/etc/racoon/<replaceable>X.X.X.X</replaceable>.conf"</command> statement. This statement (and the file it references) is generated when the <abbrev>IPsec</abbrev> tunnel is activated. For Workstation A, the <replaceable>X.X.X.X</replaceable> in the <command>include</command> statement is Workstation B's IP address. The opposite is true of Workstation B. The following shows a typical <filename>racoon.conf</filename> file when the <abbrev>IPsec</abbrev> connection is activated."
+msgid ""
+"The <filename>/etc/racoon/racoon.conf</filename> files should be identical "
+"on all <abbrev>IPsec</abbrev> nodes <emphasis>except</emphasis> for the "
+"<command>include "/etc/racoon/<replaceable>X.X.X.X</replaceable>."
+"conf"</command> statement. This statement (and the file it references) "
+"is generated when the <abbrev>IPsec</abbrev> tunnel is activated. For "
+"Workstation A, the <replaceable>X.X.X.X</replaceable> in the "
+"<command>include</command> statement is Workstation B's IP address. The "
+"opposite is true of Workstation B. The following shows a typical "
+"<filename>racoon.conf</filename> file when the <abbrev>IPsec</abbrev> "
+"connection is activated."
msgstr ""
+"Il file <filename>/etc/racoon/racoon.conf</filename> dovrebbe contenere le "
+"stesse istruzioni in tutti gli analoghi file dei nodi <abbrev>IPsec</"
+"abbrev>, con l'unica <emphasis>eccezione</emphasis> dell'istruzione "
+"<command>include "/etc/racoon/<replaceable>X.X.X.X</replaceable>."
+"conf"</command>. Questa istruzione (ed il file relativo), è creata "
+"all'avvio del tunnel <abbrev>IPsec</abbrev>. Nel caso di due workstation A e "
+"B, nel file della workstation A, <replaceable>X.X.X.X</replaceable> "
+"dell'istruzione <command>include</command>, rappresenta l'indirizzo IP della "
+"workstation B; mentre nel file della workstation B, rappresenta l'IP della "
+"workstation A. Di seguito si riporta un file <filename>racoon.conf</"
+"filename>, tipico:"
#. Tag: screen
#, no-c-format
msgid ""
"# Racoon IKE daemon configuration file.\n"
-"# See 'man racoon.conf' for a description of the format and entries.\n"
+"# See 'man racoon.conf' for a description of the format and "
+"entries.\n"
"\n"
"path include "/etc/racoon";\n"
"path pre_shared_key "/etc/racoon/psk.txt";\n"
@@ -569,314 +1146,650 @@
"}\n"
"include "/etc/racoon/X.X.X.X.conf";"
msgstr ""
+"# Racoon IKE daemon configuration file.\n"
+"# See 'man racoon.conf' for a description of the format and "
+"entries.\n"
+"\n"
+"path include "/etc/racoon";\n"
+"path pre_shared_key "/etc/racoon/psk.txt";\n"
+"path certificate "/etc/racoon/certs";\n"
+"\n"
+"sainfo anonymous\n"
+"{\n"
+" pfs_group 2;\n"
+" lifetime time 1 hour ;\n"
+" encryption_algorithm 3des, blowfish 448, rijndael ;\n"
+" authentication_algorithm hmac_sha1, hmac_md5 ;\n"
+" compression_algorithm deflate ;\n"
+"}\n"
+"include "/etc/racoon/X.X.X.X.conf";"
#. Tag: para
#, no-c-format
-msgid "This default <filename>racoon.conf</filename> file includes defined paths for <abbrev>IPsec</abbrev> configuration, pre-shared key files, and certificates. The fields in <computeroutput>sainfo anonymous</computeroutput> describe the phase 2 SA between the <abbrev>IPsec</abbrev> nodes — the nature of the <abbrev>IPsec</abbrev> connection (including the supported encryption algorithms used) and the method of exchanging keys. The following list defines the fields of phase 2:"
+msgid ""
+"This default <filename>racoon.conf</filename> file includes defined paths "
+"for <abbrev>IPsec</abbrev> configuration, pre-shared key files, and "
+"certificates. The fields in <computeroutput>sainfo anonymous</"
+"computeroutput> describe the phase 2 SA between the <abbrev>IPsec</abbrev> "
+"nodes — the nature of the <abbrev>IPsec</abbrev> connection (including "
+"the supported encryption algorithms used) and the method of exchanging keys. "
+"The following list defines the fields of phase 2:"
msgstr ""
+"Il file <filename>racoon.conf</filename>, predefinito, include i percorsi "
+"relativi alla configurazione di <abbrev>IPsec</abbrev>, ai file della chiave "
+"pre-condivisa, ed ai certificati d'autenticazione. I campi in "
+"<computeroutput>sainfo anonymous</computeroutput> descrivono la SA della "
+"fase 2, tra i nodi <abbrev>IPsec</abbrev> — la natura della "
+"connessione <abbrev>IPsec</abbrev>, il tipo di algoritmo di cifratura usato "
+"e il metodo di scambio delle chiavi. I campi sono i seguenti:"
#. Tag: term
#, no-c-format
msgid "sainfo anonymous"
-msgstr ""
+msgstr "sainfo anonymous"
#. Tag: para
#, no-c-format
-msgid "Denotes that SA can anonymously initialize with any peer provided that the <abbrev>IPsec</abbrev> credentials match."
+msgid ""
+"Denotes that SA can anonymously initialize with any peer provided that the "
+"<abbrev>IPsec</abbrev> credentials match."
msgstr ""
+"Denota che SA si inizializza in maniera anonima con ogni peer, purchè "
+"coincidano le credenziali <abbrev>IPsec</abbrev>."
#. Tag: term
#, no-c-format
msgid "pfs_group 2"
-msgstr ""
+msgstr "pfs_group 2"
#. Tag: para
#, no-c-format
-msgid "Defines the Diffie-Hellman key exchange protocol, which determines the method by which the <abbrev>IPsec</abbrev> nodes establish a mutual temporary session key for the second phase of <abbrev>IPsec</abbrev> connectivity. By default, the &PROD; implementation of <abbrev>IPsec</abbrev> uses group 2 (or <computeroutput>modp1024</computeroutput>) of the Diffie-Hellman cryptographic key exchange groups. Group 2 uses a 1024-bit modular exponentiation that prevents attackers from decrypting previous <abbrev>IPsec</abbrev> transmissions even if a private key is compromised."
+msgid ""
+"Defines the Diffie-Hellman key exchange protocol, which determines the "
+"method by which the <abbrev>IPsec</abbrev> nodes establish a mutual "
+"temporary session key for the second phase of <abbrev>IPsec</abbrev> "
+"connectivity. By default, the &PROD; implementation of <abbrev>IPsec</"
+"abbrev> uses group 2 (or <computeroutput>modp1024</computeroutput>) of the "
+"Diffie-Hellman cryptographic key exchange groups. Group 2 uses a 1024-bit "
+"modular exponentiation that prevents attackers from decrypting previous "
+"<abbrev>IPsec</abbrev> transmissions even if a private key is compromised."
msgstr ""
+"Definisce il protocollo di scambio delle chiavi Diffie-Hellman, determinando "
+"il metodo usato dai nodi <abbrev>IPsec</abbrev> per creare una sessione "
+"temporanea autenticata per la seconda fase della connessione. Per "
+"impostazione, l'implementazione di <abbrev>IPsec</abbrev> in &PROD;, usa "
+"group 2 (o <computeroutput>modp1024</computeroutput>) del metodo di scambio "
+"di chiavi cifrate Diffie-Hellman. Group 2 usa un modulo esponenziale a 1024-"
+"bit, per impedire ad attacker eventualmente in possesso di chiavi "
+"compromesse, la decifrazione di precedenti trasmissioni."
#. Tag: term
#, no-c-format
msgid "lifetime time 1 hour"
-msgstr ""
+msgstr "lifetime time 1 hour"
#. Tag: para
#, no-c-format
-msgid "This parameter specifies the lifetime of an SA and can be quantified either by time or by bytes of data. The default &PROD; implementation of <abbrev>IPsec</abbrev> specifies a one hour lifetime."
+msgid ""
+"This parameter specifies the lifetime of an SA and can be quantified either "
+"by time or by bytes of data. The default &PROD; implementation of "
+"<abbrev>IPsec</abbrev> specifies a one hour lifetime."
msgstr ""
+"Questo parametro specifica il tempo di vita medio di un SA e può essere "
+"espresso in formato orario o di data. Per impostazione, in &PROD;si "
+"specifica in ore."
#. Tag: term
#, no-c-format
msgid "encryption_algorithm 3des, blowfish 448, rijndael"
-msgstr ""
+msgstr "encryption_algorithm 3des, blowfish 448, rijndael"
#. Tag: para
#, no-c-format
-msgid "Specifies the supported encryption ciphers for phase 2. &PROD; supports 3DES, 448-bit Blowfish, and Rijndael (the cipher used in the <firstterm>Advanced Encryption Standard</firstterm>, or <acronym>AES</acronym>)."
+msgid ""
+"Specifies the supported encryption ciphers for phase 2. &PROD; supports "
+"3DES, 448-bit Blowfish, and Rijndael (the cipher used in the "
+"<firstterm>Advanced Encryption Standard</firstterm>, or <acronym>AES</"
+"acronym>)."
msgstr ""
+"Specifica il sistema di cifratura della fase 2. &PROD; supporta i sistemi "
+"3DES, 448-bit Blowfish, e Rijndael, il sistema di cifratura usato in "
+"<acronym>AES</acronym> (<firstterm>Advanced Encryption Standard</firstterm>)."
#. Tag: term
#, no-c-format
msgid "authentication_algorithm hmac_sha1, hmac_md5"
-msgstr ""
+msgstr "authentication_algorithm hmac_sha1, hmac_md5"
#. Tag: para
#, no-c-format
-msgid "Lists the supported hash algorithms for authentication. Supported modes are sha1 and md5 hashed message authentication codes (HMAC)."
+msgid ""
+"Lists the supported hash algorithms for authentication. Supported modes are "
+"sha1 and md5 hashed message authentication codes (HMAC)."
msgstr ""
+"Elenca gli algoritmi hash a supporto dell'autenticazione. I modi supportati "
+"sono le codifiche di autenticazione dei messaggi sha1 e md5 (HMAC)."
#. Tag: term
#, no-c-format
msgid "compression_algorithm deflate"
-msgstr ""
+msgstr "compression_algorithm deflate"
#. Tag: para
#, no-c-format
-msgid "Defines the Deflate compression algorithm for IP Payload Compression (IPCOMP) support, which allows for potentially faster transmission of IP datagrams over slow connections."
+msgid ""
+"Defines the Deflate compression algorithm for IP Payload Compression "
+"(IPCOMP) support, which allows for potentially faster transmission of IP "
+"datagrams over slow connections."
msgstr ""
+"Definisce l'algoritmo di compressione a supporto di IPCOMP (IP Payload "
+"Compression), per consentire trasmissioni più veloci."
#. Tag: para
#, no-c-format
msgid "To start the connection, use the following command on each host:"
msgstr ""
+"Per avviare la connessione, su ciascun host, usare il seguente comando:"
#. Tag: screen
#, no-c-format
msgid "[root at myServer ~]# /sbin/ifup <nickname>"
-msgstr ""
+msgstr "[root at myServer ~]# /sbin/ifup <nickname>"
#. Tag: para
#, no-c-format
-msgid "where <nickname> is the name you specified for the <abbrev>IPsec</abbrev> connection."
+msgid ""
+"where <nickname> is the name you specified for the <abbrev>IPsec</"
+"abbrev> connection."
msgstr ""
+"in cui <nickname> è il nome della connessione <abbrev>IPsec</abbrev>."
#. Tag: para
#, no-c-format
-msgid "To test the <abbrev>IPsec</abbrev> connection, run the <command>tcpdump</command> utility to view the network packets being transfered between the hosts and verify that they are encrypted via IPsec. The packet should include an AH header and should be shown as ESP packets. ESP means it is encrypted. For example:"
+msgid ""
+"To test the <abbrev>IPsec</abbrev> connection, run the <command>tcpdump</"
+"command> utility to view the network packets being transfered between the "
+"hosts and verify that they are encrypted via IPsec. The packet should "
+"include an AH header and should be shown as ESP packets. ESP means it is "
+"encrypted. For example:"
msgstr ""
+"Per testare la connessione <abbrev>IPsec</abbrev>, eseguire l'utility "
+"<command>tcpdump</command> che visualizza i pacchetti trasferiti tra gli "
+"host e verifica se sono cifrati via IPsec. Il pacchetto dovrebbe includere "
+"un'intestazione AH ed essere segnato come ESP, ad indicare che si tratta di "
+"un pacchetto cifrato. Per esempio:"
#. Tag: screen
#, no-c-format
msgid ""
"[root at myServer ~]# tcpdump -n -i eth0 host <targetSystem>\n"
"\n"
-"IP 172.16.45.107 > 172.16.44.192: AH(spi=0x0954ccb6,seq=0xbb): ESP(spi=0x0c9f2164,seq=0xbb)"
+"IP 172.16.45.107 > 172.16.44.192: AH(spi=0x0954ccb6,seq=0xbb): ESP"
+"(spi=0x0c9f2164,seq=0xbb)"
msgstr ""
+"[root at myServer ~]# tcpdump -n -i eth0 host <targetSystem>\n"
+"\n"
+"IP 172.16.45.107 > 172.16.44.192: AH(spi=0x0954ccb6,seq=0xbb): ESP"
+"(spi=0x0c9f2164,seq=0xbb)"
#. Tag: title
#, no-c-format
msgid "IPsec Network-to-Network Configuration"
-msgstr ""
+msgstr "Configurazione Network-to-Network"
#. Tag: para
#, no-c-format
-msgid "IPsec can also be configured to connect an entire network (such as a <acronym>LAN</acronym> or <acronym>WAN</acronym>) to a remote network using a network-to-network connection. A network-to-network connection requires the setup of <abbrev>IPsec</abbrev> routers on each side of the connecting networks to transparently process and route information from one node on a <acronym>LAN</acronym> to a node on a remote <acronym>LAN</acronym>. <xref linkend=\"figu-Security_Guide-IPsec_Network_to_Network_Configuration-A_network_to_network_IPsec_tunneled_connection\" /> shows a network-to-network <abbrev>IPsec</abbrev> tunneled connection."
+msgid ""
+"IPsec can also be configured to connect an entire network (such as a "
+"<acronym>LAN</acronym> or <acronym>WAN</acronym>) to a remote network using "
+"a network-to-network connection. A network-to-network connection requires "
+"the setup of <abbrev>IPsec</abbrev> routers on each side of the connecting "
+"networks to transparently process and route information from one node on a "
+"<acronym>LAN</acronym> to a node on a remote <acronym>LAN</acronym>. <xref "
+"linkend=\"figu-Security_Guide-IPsec_Network_to_Network_Configuration-"
+"A_network_to_network_IPsec_tunneled_connection\" /> shows a network-to-"
+"network <abbrev>IPsec</abbrev> tunneled connection."
msgstr ""
+"IPsec può anche essere configurato per connettere una rete, come una "
+"<acronym>LAN</acronym> o <acronym>WAN</acronym>, ad una rete remota, "
+"attraverso una connessione network-to-network. Una tale connessione richiede "
+"di impostare i router <abbrev>IPsec</abbrev> delle due reti in maniera da "
+"processare e indirizzare con trasparenza, le informazioni da un nodo della "
+"<acronym>LAN</acronym> a un nodo sulla <acronym>LAN</acronym> remota.La "
+"<xref linkend=\"figu-Security_Guide-IPsec_Network_to_Network_Configuration-"
+"A_network_to_network_IPsec_tunneled_connection\" /> illustra una tipica "
+"connessione <abbrev>IPsec</abbrev> network-to-network."
#. Tag: title
#, no-c-format
msgid "A network-to-network <abbrev>IPsec</abbrev> tunneled connection"
-msgstr ""
+msgstr "Una connessione <abbrev>IPsec</abbrev> network-to-network"
#. Tag: para
#, no-c-format
-msgid "This diagram shows two separate <acronym>LAN</acronym>s separated by the Internet. These <acronym>LAN</acronym>s use <abbrev>IPsec</abbrev> routers to authenticate and initiate a connection using a secure tunnel through the Internet. Packets that are intercepted in transit would require brute-force decryption in order to crack the cipher protecting the packets between these <acronym>LAN</acronym>s. The process of communicating from one node in the 192.168.1.0/24 IP range to another in the 192.168.2.0/24 range is completely transparent to the nodes as the processing, encryption/decryption, and routing of the <abbrev>IPsec</abbrev> packets are completely handled by the <abbrev>IPsec</abbrev> router."
+msgid ""
+"This diagram shows two separate <acronym>LAN</acronym>s separated by the "
+"Internet. These <acronym>LAN</acronym>s use <abbrev>IPsec</abbrev> routers "
+"to authenticate and initiate a connection using a secure tunnel through the "
+"Internet. Packets that are intercepted in transit would require brute-force "
+"decryption in order to crack the cipher protecting the packets between these "
+"<acronym>LAN</acronym>s. The process of communicating from one node in the "
+"192.168.1.0/24 IP range to another in the 192.168.2.0/24 range is completely "
+"transparent to the nodes as the processing, encryption/decryption, and "
+"routing of the <abbrev>IPsec</abbrev> packets are completely handled by the "
+"<abbrev>IPsec</abbrev> router."
msgstr ""
+"Lo schema mostra due <acronym>LAN</acronym> separate da Internet. Le "
+"<acronym>LAN</acronym> usano router <abbrev>IPsec</abbrev> per autenticare e "
+"iniziare una connessione, usando un tunnel sicuro attraverso Internet. I "
+"pacchetti intercettati da malintenzionati, per scoprire la chiave di "
+"cifratura, richiederebbero dei sistemi di decifrazione molto potenti (n.d.t. "
+"i sistemi dell'NSA!?!), in quanto dovrebbero verificare iterativamente tutte "
+"le combinazioni di chiavi possibili (brute-force decryption). Il processo di "
+"comunicazione tra un nodo della rete 192.168.1.0/24 ed un altro della rete "
+"192.168.2.0/24 risulta completamente trasparente agli altri nodi poichè la "
+"cifratura/decifratura e il routing dei pacchetti <abbrev>IPsec</abbrev> sono "
+"interamente gestiti dai router <abbrev>IPsec</abbrev>."
#. Tag: para
#, no-c-format
msgid "The information needed for a network-to-network connection include:"
msgstr ""
+"Le informazioni richieste per una connessione network-to-network, sono:"
#. Tag: para
#, no-c-format
-msgid "The externally-accessible IP addresses of the dedicated <abbrev>IPsec</abbrev> routers"
+msgid ""
+"The externally-accessible IP addresses of the dedicated <abbrev>IPsec</"
+"abbrev> routers"
msgstr ""
+"Gli indirizzi IP esternamente accessibili dei router <abbrev>IPsec</abbrev>, "
+"dedicati."
#. Tag: para
#, no-c-format
-msgid "The network address ranges of the <acronym>LAN</acronym>/<acronym>WAN</acronym> served by the <abbrev>IPsec</abbrev> routers (such as 192.168.1.0/24 or 10.0.1.0/24)"
+msgid ""
+"The network address ranges of the <acronym>LAN</acronym>/<acronym>WAN</"
+"acronym> served by the <abbrev>IPsec</abbrev> routers (such as "
+"192.168.1.0/24 or 10.0.1.0/24)"
msgstr ""
+"Gli indirizzi di rete delle <acronym>LAN</acronym>/<acronym>WAN</acronym> "
+"servite dai router <abbrev>IPsec</abbrev> (per esempio 192.168.1.0/24 "
+"10.0.1.0/24)"
#. Tag: para
#, no-c-format
-msgid "The IP addresses of the gateway devices that route the data from the network nodes to the Internet"
+msgid ""
+"The IP addresses of the gateway devices that route the data from the network "
+"nodes to the Internet"
msgstr ""
+"Gli indirizzi IP dei gateway che indirizzano i pacchetti dai nodi di rete "
+"verso Internet."
#. Tag: para
#, no-c-format
-msgid "A fixed encryption key or one automatically generated by <command>racoon</command>"
+msgid ""
+"A fixed encryption key or one automatically generated by <command>racoon</"
+"command>"
msgstr ""
+"Una chiave di cifratura, magari generata automaticamente da <command>racoon</"
+"command>"
#. Tag: title
#, no-c-format
msgid "Network-to-Network (<abbrev>VPN</abbrev>) Connection"
-msgstr ""
+msgstr "Configurazione automatica di <abbrev>VPN</abbrev>"
#. Tag: para
#, no-c-format
-msgid "A network-to-network <abbrev>IPsec</abbrev> connection uses two <abbrev>IPsec</abbrev> routers, one for each network, through which the network traffic for the private subnets is routed."
+msgid ""
+"A network-to-network <abbrev>IPsec</abbrev> connection uses two "
+"<abbrev>IPsec</abbrev> routers, one for each network, through which the "
+"network traffic for the private subnets is routed."
msgstr ""
+"Una connessione <abbrev>IPsec</abbrev>, network-to-network usa due router "
+"<abbrev>IPsec</abbrev>, uno per ciascuna rete, attraverso cui passa il "
+"traffico diretto alla rete privata."
#. Tag: para
#, no-c-format
-msgid "For example, as shown in <xref linkend=\"figu-Security_Guide-Network_to_Network_VPN_Connection-Network_to_Network_IPsec\" />, if the 192.168.1.0/24 private network sends network traffic to the 192.168.2.0/24 private network, the packets go through gateway0, to ipsec0, through the Internet, to ipsec1, to gateway1, and to the 192.168.2.0/24 subnet."
+msgid ""
+"For example, as shown in <xref linkend=\"figu-Security_Guide-"
+"Network_to_Network_VPN_Connection-Network_to_Network_IPsec\" />, if the "
+"192.168.1.0/24 private network sends network traffic to the 192.168.2.0/24 "
+"private network, the packets go through gateway0, to ipsec0, through the "
+"Internet, to ipsec1, to gateway1, and to the 192.168.2.0/24 subnet."
msgstr ""
+"Per esempio, come mostrato nella <xref linkend=\"figu-Security_Guide-"
+"Network_to_Network_VPN_Connection-Network_to_Network_IPsec\" />, se la rete "
+"privata 192.168.1.0/24 invia dei pacchetti alla rete privata 192.168.2.0/24, "
+"i pacchetti passano dal gateway0 al nodo ipsec0, poi attraversano Internet e "
+"dal nodo ipsec1 al gateway1, arrivano alla rete 192.168.2.0/24."
#. Tag: para
#, no-c-format
-msgid "<abbrev>IPsec</abbrev> routers require publicly addressable IP addresses and a second Ethernet device connected to their respective private networks. Traffic only travels through an <abbrev>IPsec</abbrev> router if it is intended for another <abbrev>IPsec</abbrev> router with which it has an encrypted connection."
+msgid ""
+"<abbrev>IPsec</abbrev> routers require publicly addressable IP addresses and "
+"a second Ethernet device connected to their respective private networks. "
+"Traffic only travels through an <abbrev>IPsec</abbrev> router if it is "
+"intended for another <abbrev>IPsec</abbrev> router with which it has an "
+"encrypted connection."
msgstr ""
+"I router <abbrev>IPsec</abbrev>, richiedono due scheda di rete: una per le "
+"connessioni esterne, verso Internet, quindi con IP pubblico accessibile; "
+"l'altra per le connessioni interne alla propria rete. Il solo traffico che "
+"passa attraverso ad un router <abbrev>IPsec</abbrev> è quello destinato ad "
+"un altro router <abbrev>IPsec</abbrev> con il quale si è creato una "
+"connessione cifrata."
#. Tag: title
#, no-c-format
msgid "Network-to-Network IPsec"
-msgstr ""
+msgstr "Connessione Network-to-Network"
#. Tag: para
#, no-c-format
-msgid "Alternate network configuration options include a firewall between each IP router and the Internet, and an intranet firewall between each <abbrev>IPsec</abbrev> router and subnet gateway. The <abbrev>IPsec</abbrev> router and the gateway for the subnet can be one system with two Ethernet devices: one with a public IP address that acts as the <abbrev>IPsec</abbrev> router; and one with a private IP address that acts as the gateway for the private subnet. Each <abbrev>IPsec</abbrev> router can use the gateway for its private network or a public gateway to send the packets to the other <abbrev>IPsec</abbrev> router."
+msgid ""
+"Alternate network configuration options include a firewall between each IP "
+"router and the Internet, and an intranet firewall between each "
+"<abbrev>IPsec</abbrev> router and subnet gateway. The <abbrev>IPsec</abbrev> "
+"router and the gateway for the subnet can be one system with two Ethernet "
+"devices: one with a public IP address that acts as the <abbrev>IPsec</"
+"abbrev> router; and one with a private IP address that acts as the gateway "
+"for the private subnet. Each <abbrev>IPsec</abbrev> router can use the "
+"gateway for its private network or a public gateway to send the packets to "
+"the other <abbrev>IPsec</abbrev> router."
msgstr ""
+"Configurazioni alternative possono includere un firewall tra ciascun router "
+"IP e Internet, ed un firewall intranet tra ciascun router <abbrev>IPsec</"
+"abbrev> e il gateway di rete. Il router <abbrev>IPsec</abbrev> ed il gateway "
+"della sottorete possono anche coincidere con un unico sistema con due scede "
+"di rete: una con un IP pubblico che agisce da router <abbrev>IPsec</abbrev>; "
+"l'altra con un IP privato che agisce da gateway per la sottorete privata. "
+"Ciascun router <abbrev>IPsec</abbrev> può usare il gateway della propria "
+"rete o un gateway pubblico per trasmettere i pacchetti all'altro router "
+"<abbrev>IPsec</abbrev>."
#. Tag: para
#, no-c-format
-msgid "Use the following procedure to configure a network-to-network <abbrev>IPsec</abbrev> connection:"
+msgid ""
+"Use the following procedure to configure a network-to-network <abbrev>IPsec</"
+"abbrev> connection:"
msgstr ""
+"Per configurare una connessione network-to-network, <abbrev>IPsec</abbrev>, "
+"usare la seguente procedura:"
#. Tag: para
#, no-c-format
-msgid "Click <guibutton>Forward</guibutton> to start configuring a network-to-network <abbrev>IPsec</abbrev> connection."
-msgstr ""
+msgid ""
+"Click <guibutton>Forward</guibutton> to start configuring a network-to-"
+"network <abbrev>IPsec</abbrev> connection."
+msgstr "Premere <guibutton>Avanti</guibutton> per avviare la configurazione."
#. Tag: para
#, no-c-format
-msgid "Enter a unique nickname for the connection, for example, <userinput>ipsec0</userinput>. If required, select the check box to automatically activate the connection when the computer starts. Click <guibutton>Forward</guibutton> to continue."
+msgid ""
+"Enter a unique nickname for the connection, for example, <userinput>ipsec0</"
+"userinput>. If required, select the check box to automatically activate the "
+"connection when the computer starts. Click <guibutton>Forward</guibutton> to "
+"continue."
msgstr ""
+"Inserire un nome per indicare la connessione, per esempio <userinput>ipsec0</"
+"userinput>. Se si desidera attivare automaticamente la connessione all'avvio "
+"del computer, attivare la casella di controllo. Premere <guibutton>Avanti</"
+"guibutton> per continuare."
#. Tag: para
#, no-c-format
-msgid "Select <guilabel>Network to Network encryption (VPN)</guilabel> as the connection type, and then click <guibutton>Forward</guibutton>."
+msgid ""
+"Select <guilabel>Network to Network encryption (VPN)</guilabel> as the "
+"connection type, and then click <guibutton>Forward</guibutton>."
msgstr ""
+"Selezionare <guilabel>Crittografia da rete a rete (VPN)</guilabel>, e poi "
+"premere <guibutton>Avanti</guibutton>."
#. Tag: para
#, no-c-format
-msgid "On the <guilabel>Local Network</guilabel> page, enter the following information:"
+msgid ""
+"On the <guilabel>Local Network</guilabel> page, enter the following "
+"information:"
msgstr ""
+"Nella scheda <guilabel>Rete Locale</guilabel>, inserire le seguenti "
+"informazioni:"
#. Tag: para
#, no-c-format
-msgid "<guilabel>Local Network Address</guilabel> — The IP address of the device on the <abbrev>IPsec</abbrev> router connected to the private network."
+msgid ""
+"<guilabel>Local Network Address</guilabel> — The IP address of the "
+"device on the <abbrev>IPsec</abbrev> router connected to the private network."
msgstr ""
+"<guilabel>Indirizzo locale</guilabel> — L'indirizzo IP della scheda "
+"di rete sul router <abbrev>IPsec</abbrev>."
#. Tag: para
#, no-c-format
-msgid "<guilabel>Local Subnet Mask</guilabel> — The subnet mask of the local network IP address."
+msgid ""
+"<guilabel>Local Subnet Mask</guilabel> — The subnet mask of the local "
+"network IP address."
msgstr ""
+"<guilabel>Maschera di sottorete locale</guilabel> — La subnet mask "
+"della rete locale"
#. Tag: para
#, no-c-format
-msgid "<guilabel>Local Network Gateway</guilabel> — The gateway for the private subnet."
+msgid ""
+"<guilabel>Local Network Gateway</guilabel> — The gateway for the "
+"private subnet."
msgstr ""
+"<guilabel>Gateway della rete locale</guilabel> — L'indirizzo del "
+"gateway"
#. Tag: title
#, no-c-format
msgid "Local Network Information"
-msgstr ""
+msgstr "Informazioni di rete locale"
#. Tag: para
#, no-c-format
-msgid "On the <guilabel>Remote Network</guilabel> page, enter the following information:"
+msgid ""
+"On the <guilabel>Remote Network</guilabel> page, enter the following "
+"information:"
msgstr ""
+"Nella pagina <guilabel>Rete remota</guilabel>, inserire le seguenti "
+"informazioni:"
#. Tag: para
#, no-c-format
-msgid "<guilabel>Remote IP Address</guilabel> — The publicly addressable IP address of the <abbrev>IPsec</abbrev> router for the <emphasis>other</emphasis> private network. In our example, for ipsec0, enter the publicly addressable IP address of ipsec1, and vice versa."
+msgid ""
+"<guilabel>Remote IP Address</guilabel> — The publicly addressable IP "
+"address of the <abbrev>IPsec</abbrev> router for the <emphasis>other</"
+"emphasis> private network. In our example, for ipsec0, enter the publicly "
+"addressable IP address of ipsec1, and vice versa."
msgstr ""
+"<guilabel>Indirizzo IP remoto</guilabel> — L'indirizzo IP pubblico del "
+"router <abbrev>IPsec</abbrev> dell'<emphasis>altra</emphasis> rete privata. "
+"Nel nostro caso, per il router ipssec0, inserire l'IP del router ipsec1, e "
+"viceversa."
#. Tag: para
#, no-c-format
-msgid "<guilabel>Remote Network Address</guilabel> — The network address of the private subnet behind the <emphasis>other</emphasis> <abbrev>IPsec</abbrev> router. In our example, enter <userinput>192.168.1.0</userinput> if configuring ipsec1, and enter <userinput>192.168.2.0</userinput> if configuring ipsec0."
+msgid ""
+"<guilabel>Remote Network Address</guilabel> — The network address of "
+"the private subnet behind the <emphasis>other</emphasis> <abbrev>IPsec</"
+"abbrev> router. In our example, enter <userinput>192.168.1.0</userinput> if "
+"configuring ipsec1, and enter <userinput>192.168.2.0</userinput> if "
+"configuring ipsec0."
msgstr ""
+"<guilabel>Indirizzo di rete remota</guilabel> — L'indirizzo della "
+"sottorete dietro all'<emphasis>altro</emphasis> router <abbrev>IPsec</"
+"abbrev>. Nel nostro esempio, inserire <userinput>192.168.1.0</userinput> se "
+"si configura ipsec1, e <userinput>192.168.2.0</userinput> se si configura "
+"ipsec0."
#. Tag: para
#, no-c-format
-msgid "<guilabel>Remote Subnet Mask</guilabel> — The subnet mask of the remote IP address."
+msgid ""
+"<guilabel>Remote Subnet Mask</guilabel> — The subnet mask of the "
+"remote IP address."
msgstr ""
+"<guilabel>Maschera di sottorete remota</guilabel> — La maschera della "
+"sottorete remota."
#. Tag: para
#, no-c-format
-msgid "<guilabel>Remote Network Gateway</guilabel> — The IP address of the gateway for the remote network address."
+msgid ""
+"<guilabel>Remote Network Gateway</guilabel> — The IP address of the "
+"gateway for the remote network address."
msgstr ""
+"<guilabel>Gateway della rete remota</guilabel> — L'indirizzo IP del "
+"gateway della rete remota."
#. Tag: para
#, no-c-format
-msgid "If manual encryption was selected in step <xref linkend=\"list-Security_Guide-list-Security_Guide-list-Security_Guide-st-host-encrypt-type-n\" />, specify the encryption key to use or click <guibutton>Generate</guibutton> to create one."
+msgid ""
+"If manual encryption was selected in step <xref linkend=\"list-"
+"Security_Guide-list-Security_Guide-list-Security_Guide-st-host-encrypt-type-n"
+"\" />, specify the encryption key to use or click <guibutton>Generate</"
+"guibutton> to create one."
msgstr ""
+"Se nel passo 6 si è scelta la cifratura maunale, specificare la chiave da "
+"usare o premere <guibutton>Genera</guibutton> per crearne una."
#. Tag: para
#, no-c-format
-msgid "Specify an authentication key or click <guibutton>Generate</guibutton> to generate one. This key can be any combination of numbers and letters."
+msgid ""
+"Specify an authentication key or click <guibutton>Generate</guibutton> to "
+"generate one. This key can be any combination of numbers and letters."
msgstr ""
+"Specificare una chiave di autenticazione o premere <guibutton>Genera</"
+"guibutton> per crearne una. Questa chiave può essere una combinazione di "
+"numeri, lettere e caratteri di punteggiatura."
#. Tag: title
#, no-c-format
msgid "Remote Network Information"
-msgstr ""
+msgstr "Informazioni di rete remota"
#. Tag: para
#, no-c-format
-msgid "Select <guimenu>File</guimenu> => <guimenuitem>Save</guimenuitem> to save the configuration."
+msgid ""
+"Select <guimenu>File</guimenu> => <guimenuitem>Save</guimenuitem> to "
+"save the configuration."
msgstr ""
+"Per salvare la configurazione, selezionare <guimenu>File</guimenu> => "
+"<guimenuitem>Salva</guimenuitem>."
#. Tag: para
#, no-c-format
-msgid "Select the <abbrev>IPsec</abbrev> connection from the list, and then click <guibutton>Activate</guibutton> to activate the connection."
+msgid ""
+"Select the <abbrev>IPsec</abbrev> connection from the list, and then click "
+"<guibutton>Activate</guibutton> to activate the connection."
msgstr ""
+"Per attivare la connessione, selezionare la connessione <abbrev>IPsec</"
+"abbrev> dalla lista, e poi premere <guibutton>Attiva</guibutton>."
#. Tag: para
#, no-c-format
msgid "Enable IP forwarding:"
-msgstr ""
+msgstr "Abilitare l'IP forwarding:"
#. Tag: para
#, no-c-format
-msgid "Edit <filename>/etc/sysctl.conf</filename> and set <computeroutput>net.ipv4.ip_forward</computeroutput> to <userinput>1</userinput>."
+msgid ""
+"Edit <filename>/etc/sysctl.conf</filename> and set <computeroutput>net.ipv4."
+"ip_forward</computeroutput> to <userinput>1</userinput>."
msgstr ""
+"Modificare il file <filename>/etc/sysctl.conf</filename> impostando "
+"<computeroutput>net.ipv4.ip_forward</computeroutput> su <userinput>1</"
+"userinput>."
#. Tag: para
#, no-c-format
msgid "Use the following command to enable the change:"
-msgstr ""
+msgstr "Usare il seguente comando per rendere effettiva la modifica:"
#. Tag: screen
#, no-c-format
msgid "[root at myServer ~]# /sbin/sysctl -p /etc/sysctl.conf"
-msgstr ""
+msgstr "[root at myServer ~]# /sbin/sysctl -p /etc/sysctl.conf"
#. Tag: para
#, no-c-format
-msgid "The network script to activate the <abbrev>IPsec</abbrev> connection automatically creates network routes to send packets through the <abbrev>IPsec</abbrev> router if necessary."
+msgid ""
+"The network script to activate the <abbrev>IPsec</abbrev> connection "
+"automatically creates network routes to send packets through the "
+"<abbrev>IPsec</abbrev> router if necessary."
msgstr ""
+"In tal modo, lo script di rete che attiva la connessione <abbrev>IPsec</"
+"abbrev>, crea automaticamente i percorsi di instradamento dei pacchetti da "
+"trasmettere attraverso il router <abbrev>IPsec</abbrev>."
#. Tag: title
#, no-c-format
msgid "Manual <abbrev>IPsec</abbrev> Network-to-Network Configuration"
-msgstr ""
+msgstr "Configurazione manuale di <abbrev>VPN</abbrev>"
#. Tag: para
#, no-c-format
-msgid "Suppose <acronym>LAN</acronym> A (lana.example.com) and <acronym>LAN</acronym> B (lanb.example.com) want to connect to each other through an <abbrev>IPsec</abbrev> tunnel. The network address for <acronym>LAN</acronym> A is in the 192.168.1.0/24 range, while <acronym>LAN</acronym> B uses the 192.168.2.0/24 range. The gateway IP address is 192.168.1.254 for <acronym>LAN</acronym> A and 192.168.2.254 for <acronym>LAN</acronym> B. The <abbrev>IPsec</abbrev> routers are separate from each <acronym>LAN</acronym> gateway and use two network devices: eth0 is assigned to an externally-accessible static IP address which accesses the Internet, while eth1 acts as a routing point to process and transmit <acronym>LAN</acronym> packets from one network node to the remote network nodes."
+msgid ""
+"Suppose <acronym>LAN</acronym> A (lana.example.com) and <acronym>LAN</"
+"acronym> B (lanb.example.com) want to connect to each other through an "
+"<abbrev>IPsec</abbrev> tunnel. The network address for <acronym>LAN</"
+"acronym> A is in the 192.168.1.0/24 range, while <acronym>LAN</acronym> B "
+"uses the 192.168.2.0/24 range. The gateway IP address is 192.168.1.254 for "
+"<acronym>LAN</acronym> A and 192.168.2.254 for <acronym>LAN</acronym> B. The "
+"<abbrev>IPsec</abbrev> routers are separate from each <acronym>LAN</acronym> "
+"gateway and use two network devices: eth0 is assigned to an externally-"
+"accessible static IP address which accesses the Internet, while eth1 acts as "
+"a routing point to process and transmit <acronym>LAN</acronym> packets from "
+"one network node to the remote network nodes."
msgstr ""
+"Si supponga di voler connettere due <acronym>LAN</acronym>, A (lana.example."
+"com) e B (lanb.example.com), usando un tunnel <abbrev>IPsec</abbrev>. La "
+"<acronym>LAN</acronym> A ha indirizzo 192.168.1.0/24, la <acronym>LAN</"
+"acronym> B 192.168.2.0/24. Gl'indirizzi IP dei gateway sono 192.168.1.254 "
+"per la <acronym>LAN</acronym> A e 192.168.2.254 per la <acronym>LAN</"
+"acronym> B. I router <abbrev>IPsec</abbrev> sono distinti da ciascun gateway "
+"e usano due schede di rete: ad eth0 è assegnato un indirizzo IP statico "
+"accessibile esternamente e connesso ad Internet, mentre eth1 funge da punto "
+"di routing processando e trasmettendo i pacchetti da un nodo di una "
+"<acronym>LAN</acronym> ai nodi della rete remota."
#. Tag: para
#, no-c-format
-msgid "The <abbrev>IPsec</abbrev> connection between each network uses a pre-shared key with the value of <computeroutput>r3dh4tl1nux</computeroutput>, and the administrators of A and B agree to let <command>racoon</command> automatically generate and share an authentication key between each <abbrev>IPsec</abbrev> router. The administrator of <acronym>LAN</acronym> A decides to name the <abbrev>IPsec</abbrev> connection <computeroutput>ipsec0</computeroutput>, while the administrator of <acronym>LAN</acronym> B names the <abbrev>IPsec</abbrev> connection <computeroutput>ipsec1</computeroutput>."
+msgid ""
+"The <abbrev>IPsec</abbrev> connection between each network uses a pre-shared "
+"key with the value of <computeroutput>r3dh4tl1nux</computeroutput>, and the "
+"administrators of A and B agree to let <command>racoon</command> "
+"automatically generate and share an authentication key between each "
+"<abbrev>IPsec</abbrev> router. The administrator of <acronym>LAN</acronym> A "
+"decides to name the <abbrev>IPsec</abbrev> connection "
+"<computeroutput>ipsec0</computeroutput>, while the administrator of "
+"<acronym>LAN</acronym> B names the <abbrev>IPsec</abbrev> connection "
+"<computeroutput>ipsec1</computeroutput>."
msgstr ""
+"La connessione <abbrev>IPsec</abbrev> tra le due <acronym>LAN</acronym>, usa "
+"una chiave pre-condivisa di valore <computeroutput>r3dh4tl1nux</"
+"computeroutput>, e gli amministratori di A e B decidono di usare "
+"<command>racoon</command> per la generazione di una chiave di autenticazione "
+"condivisa. L'amministratore della <acronym>LAN</acronym> A decide di "
+"chiamare la propria connessione <computeroutput>ipsec0</computeroutput>, "
+"mentre l'altro <computeroutput>ipsec1</computeroutput>."
#. Tag: para
#, no-c-format
-msgid "The following example shows the contents of the <filename>ifcfg</filename> file for a network-to-network <abbrev>IPsec</abbrev> connection for <acronym>LAN</acronym> A. The unique name to identify the connection in this example is <replaceable>ipsec0</replaceable>, so the resulting file is called <filename>/etc/sysconfig/network-scripts/ifcfg-ipsec0</filename>."
+msgid ""
+"The following example shows the contents of the <filename>ifcfg</filename> "
+"file for a network-to-network <abbrev>IPsec</abbrev> connection for "
+"<acronym>LAN</acronym> A. The unique name to identify the connection in this "
+"example is <replaceable>ipsec0</replaceable>, so the resulting file is "
+"called <filename>/etc/sysconfig/network-scripts/ifcfg-ipsec0</filename>."
msgstr ""
+"Il seguente esempio, illustra il contenuto del file <filename>ifcfg</"
+"filename> presenta sul router <abbrev>IPsec</abbrev> della <acronym>LAN</"
+"acronym> A. Il nome univoco che identifica la connessione è <abbrev>ipsec0</"
+"abbrev>, cosicchè il file risultante è <filename>/etc/sysconfig/network-"
+"scripts/ifcfg-ipsec0</filename>."
#. Tag: screen
#, no-c-format
@@ -890,127 +1803,182 @@
"DSTNET=192.168.2.0/24\n"
"DST=<replaceable>X.X.X.X</replaceable>"
msgstr ""
+"TYPE=IPSEC\n"
+"ONBOOT=yes\n"
+"IKE_METHOD=PSK\n"
+"SRCGW=192.168.1.254\n"
+"DSTGW=192.168.2.254\n"
+"SRCNET=192.168.1.0/24\n"
+"DSTNET=192.168.2.0/24\n"
+"DST=<replaceable>X.X.X.X</replaceable>"
#. Tag: para
#, no-c-format
msgid "The following list describes the contents of this file:"
-msgstr ""
+msgstr "I parametri contenuti nel file hanno il seguente significato:"
#. Tag: term
#, no-c-format
msgid "TYPE=IPSEC"
-msgstr ""
+msgstr "TYPE=IPSEC"
#. Tag: para
#, no-c-format
msgid "Specifies the type of connection."
-msgstr ""
+msgstr "Specifica il tipo di connessione"
#. Tag: term
#, no-c-format
msgid "ONBOOT=yes"
-msgstr ""
+msgstr "ONBOOT=yes"
#. Tag: para
#, no-c-format
msgid "Specifies that the connection should initiate on boot-up."
-msgstr ""
+msgstr "Specifica se la connessione si avvia al boot del sistema"
#. Tag: term
#, no-c-format
msgid "IKE_METHOD=PSK"
-msgstr ""
+msgstr "IKE_METHOD=PSK"
#. Tag: para
#, no-c-format
-msgid "Specifies that the connection uses the pre-shared key method of authentication."
+msgid ""
+"Specifies that the connection uses the pre-shared key method of "
+"authentication."
msgstr ""
+"Specifica che la connessione usa il metodo di autenticazione con chiave per-"
+"condivisa."
#. Tag: term
#, no-c-format
msgid "SRCGW=192.168.1.254"
-msgstr ""
+msgstr "SRCGW=192.168.1.254"
#. Tag: para
#, no-c-format
-msgid "The IP address of the source gateway. For LAN A, this is the LAN A gateway, and for LAN B, the LAN B gateway."
-msgstr ""
+msgid ""
+"The IP address of the source gateway. For LAN A, this is the LAN A gateway, "
+"and for LAN B, the LAN B gateway."
+msgstr "L'indirizzo IP del gateway locale."
#. Tag: term
#, no-c-format
msgid "DSTGW=192.168.2.254"
-msgstr ""
+msgstr "DSTGW=192.168.2.254"
#. Tag: para
#, no-c-format
-msgid "The IP address of the destination gateway. For LAN A, this is the LAN B gateway, and for LAN B, the LAN A gateway."
-msgstr ""
+msgid ""
+"The IP address of the destination gateway. For LAN A, this is the LAN B "
+"gateway, and for LAN B, the LAN A gateway."
+msgstr "L'indirizzo IP del gateway remoto."
#. Tag: term
#, no-c-format
msgid "SRCNET=192.168.1.0/24"
-msgstr ""
+msgstr "SRCNET=192.168.1.0/24"
#. Tag: para
#, no-c-format
-msgid "Specifies the source network for the <abbrev>IPsec</abbrev> connection, which in this example is the network range for LAN A."
-msgstr ""
+msgid ""
+"Specifies the source network for the <abbrev>IPsec</abbrev> connection, "
+"which in this example is the network range for LAN A."
+msgstr "Specifica l'indirizzo della rete locale"
#. Tag: term
#, no-c-format
msgid "DSTNET=192.168.2.0/24"
-msgstr ""
+msgstr "DSTNET=192.168.2.0/24"
#. Tag: para
#, no-c-format
-msgid "Specifies the destination network for the <abbrev>IPsec</abbrev> connection, which in this example is the network range for <acronym>LAN</acronym> B."
-msgstr ""
+msgid ""
+"Specifies the destination network for the <abbrev>IPsec</abbrev> connection, "
+"which in this example is the network range for <acronym>LAN</acronym> B."
+msgstr "Specifica l'indirizzo della rete remota"
#. Tag: term
#, no-c-format
msgid "DST=X.X.X.X"
-msgstr ""
+msgstr "DST=X.X.X.X"
#. Tag: para
#, no-c-format
msgid "The externally-accessible IP address of <acronym>LAN</acronym> B."
msgstr ""
+"L'indirizzo IP pubblico esternamente accessibile, sulla rete remota "
+"(<acronym>LAN</acronym> B)."
#. Tag: para
#, no-c-format
-msgid "The following example is the content of the pre-shared key file called <filename>/etc/sysconfig/network-scripts/keys-ipsec<replaceable>X</replaceable></filename> (where <replaceable>X</replaceable> is 0 for <acronym>LAN</acronym> A and 1 for <acronym>LAN</acronym> B) that both networks use to authenticate each other. The contents of this file should be identical and only the root user should be able to read or write this file."
+msgid ""
+"The following example is the content of the pre-shared key file called "
+"<filename>/etc/sysconfig/network-scripts/keys-ipsec<replaceable>X</"
+"replaceable></filename> (where <replaceable>X</replaceable> is 0 for "
+"<acronym>LAN</acronym> A and 1 for <acronym>LAN</acronym> B) that both "
+"networks use to authenticate each other. The contents of this file should be "
+"identical and only the root user should be able to read or write this file."
msgstr ""
+"L'esempio seguente riporta il contenuto del file della chiave pre-condivisa "
+"<filename>/etc/sysconfig/network-scripts/keys-ipsec<replaceable>X</"
+"replaceable></filename> (in cui <replaceable>X</replaceable> è 0 ed 1 per le "
+"per le <acronym>LAN</acronym> A e B, rispettivamente), usato per "
+"l'autenticazione. Il contenuto deve essere identico sulle due reti ed "
+"accessibile in lettura/scrittura soltanto all'utente root."
#. Tag: screen
#, no-c-format
msgid "IKE_PSK=r3dh4tl1nux"
-msgstr ""
+msgstr "IKE_PSK=r3dh4tl1nux"
#. Tag: para
#, no-c-format
-msgid "To change the <filename>keys-ipsec<replaceable>X</replaceable></filename> file so that only the root user can read or edit the file, use the following command after creating the file:"
+msgid ""
+"To change the <filename>keys-ipsec<replaceable>X</replaceable></filename> "
+"file so that only the root user can read or edit the file, use the following "
+"command after creating the file:"
msgstr ""
+"Per modificare i permessi al file <filename>keys-ipsec<replaceable>X</"
+"replaceable></filename> in modo che solo l'utente root possa leggere o "
+"modificare il file, usare il seguente comando:"
#. Tag: screen
#, no-c-format
msgid "chmod 600 /etc/sysconfig/network-scripts/keys-ipsec1"
-msgstr ""
+msgstr "chmod 600 /etc/sysconfig/network-scripts/keys-ipsec1"
#. Tag: para
#, no-c-format
-msgid "To change the authentication key at any time, edit the <filename>keys-ipsec<replaceable>X</replaceable></filename> file on both <abbrev>IPsec</abbrev> routers. <emphasis>Both keys must be identical for proper connectivity</emphasis>."
-msgstr ""
+msgid ""
+"To change the authentication key at any time, edit the <filename>keys-"
+"ipsec<replaceable>X</replaceable></filename> file on both <abbrev>IPsec</"
+"abbrev> routers. <emphasis>Both keys must be identical for proper "
+"connectivity</emphasis>."
+msgstr " "
#. Tag: para
#, no-c-format
-msgid "The following example is the contents of the <filename>/etc/racoon/racoon.conf</filename> configuration file for the <abbrev>IPsec</abbrev> connection. Note that the <computeroutput>include</computeroutput> line at the bottom of the file is automatically generated and only appears if the <abbrev>IPsec</abbrev> tunnel is running."
+msgid ""
+"The following example is the contents of the <filename>/etc/racoon/racoon."
+"conf</filename> configuration file for the <abbrev>IPsec</abbrev> "
+"connection. Note that the <computeroutput>include</computeroutput> line at "
+"the bottom of the file is automatically generated and only appears if the "
+"<abbrev>IPsec</abbrev> tunnel is running."
msgstr ""
+"Di seguito si riporta il contenuto del file di configurazione <filename>/etc/"
+"racoon/racoon.conf</filename>. Notare che il parametro "
+"<computeroutput>include</computeroutput> in basso, è inserito "
+"automaticamente ed è presente solo quando il tunnel <abbrev>IPsec</abbrev> è "
+"in esecuzione."
#. Tag: screen
#, no-c-format
msgid ""
"# Racoon IKE daemon configuration file.\n"
-"# See 'man racoon.conf' for a description of the format and entries.\n"
+"# See 'man racoon.conf' for a description of the format and "
+"entries.\n"
"path include "/etc/racoon";\n"
"path pre_shared_key "/etc/racoon/psk.txt";\n"
"path certificate "/etc/racoon/certs";\n"
@@ -1025,11 +1993,39 @@
"}\n"
"include "/etc/racoon/<replaceable>X.X.X.X</replaceable>.conf""
msgstr ""
+"# Racoon IKE daemon configuration file.\n"
+"# See 'man racoon.conf' for a description of the format and "
+"entries.\n"
+"path include "/etc/racoon";\n"
+"path pre_shared_key "/etc/racoon/psk.txt";\n"
+"path certificate "/etc/racoon/certs";\n"
+" \n"
+"sainfo anonymous\n"
+"{\n"
+"\tpfs_group 2;\n"
+"\tlifetime time 1 hour ;\n"
+"\tencryption_algorithm 3des, blowfish 448, rijndael ;\n"
+"\tauthentication_algorithm hmac_sha1, hmac_md5 ;\n"
+"\tcompression_algorithm deflate ;\n"
+"}\n"
+"include "/etc/racoon/<replaceable>X.X.X.X</replaceable>.conf""
#. Tag: para
#, no-c-format
-msgid "The following is the specific configuration for the connection to the remote network. The file is called <filename><replaceable>X.X.X.X</replaceable>.conf</filename> (where <replaceable>X.X.X.X</replaceable> is the IP address of the remote <abbrev>IPsec</abbrev> router). Note that this file is automatically generated when the <abbrev>IPsec</abbrev> tunnel is activated and should not be edited directly."
+msgid ""
+"The following is the specific configuration for the connection to the remote "
+"network. The file is called <filename><replaceable>X.X.X.X</replaceable>."
+"conf</filename> (where <replaceable>X.X.X.X</replaceable> is the IP address "
+"of the remote <abbrev>IPsec</abbrev> router). Note that this file is "
+"automatically generated when the <abbrev>IPsec</abbrev> tunnel is activated "
+"and should not be edited directly."
msgstr ""
+"Ciò che segue sono le impostazioni specifiche per la connessione alla rete "
+"remota. Il file è denominato <filename><replaceable>X.X.X.X</replaceable>."
+"conf</filename> (dove <replaceable>X.X.X.X</replaceable> l'indirizzo IP del "
+"router <abbrev>IPsec</abbrev> remoto). Notare che questo file è creato "
+"automaticamente all'attivazione del tunnel <abbrev>IPsec</abbrev> e non "
+"dovrebbe essere esplicitamente modificato."
#. Tag: screen
#, no-c-format
@@ -1045,91 +2041,168 @@
"\t}\n"
"}"
msgstr ""
+"remote <replaceable>X.X.X.X</replaceable>{\n"
+" exchange_mode aggressive, main;\n"
+"\tmy_identifier address;\n"
+"\tproposal {\n"
+"\t\tencryption_algorithm 3des;\n"
+"\t\thash_algorithm sha1;\n"
+"\t\tauthentication_method pre_shared_key;\n"
+"\t\tdh_group 2 ;\n"
+"\t}\n"
+"}"
#. Tag: para
#, no-c-format
-msgid "Prior to starting the <abbrev>IPsec</abbrev> connection, IP forwarding should be enabled in the kernel. To enable IP forwarding:"
+msgid ""
+"Prior to starting the <abbrev>IPsec</abbrev> connection, IP forwarding "
+"should be enabled in the kernel. To enable IP forwarding:"
msgstr ""
+"Prima di avviare la connessione <abbrev>IPsec</abbrev>, si dovrebbe "
+"abilitare l'IP forwarding nel kernel. Eseguire il seguente comando:"
#. Tag: screen
#, no-c-format
msgid "[root at myServer ~] # sysctl -p /etc/sysctl.conf"
-msgstr ""
+msgstr "[root at myServer ~] # sysctl -p /etc/sysctl.conf"
#. Tag: para
#, no-c-format
-msgid "To start the <abbrev>IPsec</abbrev> connection, use the following command on each router:"
+msgid ""
+"To start the <abbrev>IPsec</abbrev> connection, use the following command on "
+"each router:"
msgstr ""
+"Per avviare la connessione <abbrev>IPsec</abbrev>, usare il seguente comando "
+"su ciascun router:"
#. Tag: screen
#, no-c-format
msgid "[root at myServer ~] # /sbin/ifup ipsec0"
-msgstr ""
+msgstr "[root at myServer ~] # /sbin/ifup ipsec0"
#. Tag: para
#, no-c-format
-msgid "The connections are activated, and both <acronym>LAN</acronym> A and <acronym>LAN</acronym> B are able to communicate with each other. The routes are created automatically via the initialization script called by running <command>ifup</command> on the <abbrev>IPsec</abbrev> connection. To show a list of routes for the network, use the following command:"
+msgid ""
+"The connections are activated, and both <acronym>LAN</acronym> A and "
+"<acronym>LAN</acronym> B are able to communicate with each other. The routes "
+"are created automatically via the initialization script called by running "
+"<command>ifup</command> on the <abbrev>IPsec</abbrev> connection. To show a "
+"list of routes for the network, use the following command:"
msgstr ""
+"A questo punto le connessioni sono attivate ed entrambe le <acronym>LAN</"
+"acronym> A e B possono comunicare tra loro. L'instradamento dei pacchetti è "
+"creato automaticamente dagli script di inizializzazione durante l'esecuzione "
+"di <command>ifup</command>. Per visualizzare un elenco di percorsi di "
+"instradamento, usare il comando:"
#. Tag: screen
#, no-c-format
msgid "[root at myServer ~] # /sbin/ip route list"
-msgstr ""
+msgstr "[root at myServer ~] # /sbin/ip route list"
#. Tag: para
#, no-c-format
-msgid "To test the <abbrev>IPsec</abbrev> connection, run the <command>tcpdump</command> utility on the externally-routable device (eth0 in this example) to view the network packets being transfered between the hosts (or networks), and verify that they are encrypted via IPsec. For example, to check the <abbrev>IPsec</abbrev> connectivity of <acronym>LAN</acronym> A, use the following command:"
+msgid ""
+"To test the <abbrev>IPsec</abbrev> connection, run the <command>tcpdump</"
+"command> utility on the externally-routable device (eth0 in this example) to "
+"view the network packets being transfered between the hosts (or networks), "
+"and verify that they are encrypted via IPsec. For example, to check the "
+"<abbrev>IPsec</abbrev> connectivity of <acronym>LAN</acronym> A, use the "
+"following command:"
msgstr ""
+"Per testare la connessione <abbrev>IPsec</abbrev>, eseguire l'utility "
+"<command>tcpdump</command> sulla scheda di rete rivolta all'esterno (eth0 "
+"nel caso dell'esempio), che visualizza i pacchetti trasferiti tra gli host "
+"( o reti) e verifica se sono cifrati via IPsec. Per esempio, per verificare "
+"la connessione della <acronym>LAN</acronym> A, usare il comando:"
#. Tag: screen
#, no-c-format
-msgid "[root at myServer ~] # tcpdump -n -i eth0 host <replaceable>lana.example.com</replaceable>"
+msgid ""
+"[root at myServer ~] # tcpdump -n -i eth0 host <replaceable>lana.example.com</"
+"replaceable>"
msgstr ""
+"[root at myServer ~] # tcpdump -n -i eth0 host <replaceable>lana.example.com</"
+"replaceable>"
#. Tag: para
#, no-c-format
-msgid "The packet should include an AH header and should be shown as ESP packets. ESP means it is encrypted. For example (back slashes denote a continuation of one line):"
+msgid ""
+"The packet should include an AH header and should be shown as ESP packets. "
+"ESP means it is encrypted. For example (back slashes denote a continuation "
+"of one line):"
msgstr ""
+"Il pacchetto dovrebbe includere un'intestazione AH ed essere segnato come "
+"ESP, ad indicare che si tratta di un pacchetto cifrato. Per esempio (le back "
+"slash denotano una continuazione di linea):"
#. Tag: screen
#, no-c-format
msgid ""
-"12:24:26.155529 lanb.example.com > lana.example.com: AH(spi=0x021c9834,seq=0x358): \\\n"
-"\tlanb.example.com > lana.example.com: ESP(spi=0x00c887ad,seq=0x358) (DF) \\\n"
+"12:24:26.155529 lanb.example.com > lana.example.com: AH(spi=0x021c9834,"
+"seq=0x358): \\\n"
+"\tlanb.example.com > lana.example.com: ESP(spi=0x00c887ad,seq=0x358) "
+"(DF) \\\n"
"\t(ipip-proto-4)"
msgstr ""
+"12:24:26.155529 lanb.example.com > lana.example.com: AH(spi=0x021c9834,"
+"seq=0x358): \\\n"
+"\tlanb.example.com > lana.example.com: ESP(spi=0x00c887ad,seq=0x358) "
+"(DF) \\\n"
+"\t(ipip-proto-4)"
#. Tag: title
#, no-c-format
msgid "Starting and Stopping an <abbrev>IPsec</abbrev> Connection"
-msgstr ""
+msgstr "Avviare ed interrompere una connessione <abbrev>IPsec</abbrev>"
#. Tag: para
#, no-c-format
-msgid "If the <abbrev>IPsec</abbrev> connection was not configured to activate on boot, you can control it from the command line."
+msgid ""
+"If the <abbrev>IPsec</abbrev> connection was not configured to activate on "
+"boot, you can control it from the command line."
msgstr ""
+"Se la connessione <abbrev>IPsec</abbrev>, non è stata configurata per "
+"avviarsi al boot del sistema, si può usare un terminale da cui controllare "
+"l'avvio o l'interruzione."
#. Tag: para
#, no-c-format
-msgid "To start the connection, use the following command on each host for host-to-host IPsec, or each <abbrev>IPsec</abbrev> router for network-to-network IPsec:"
+msgid ""
+"To start the connection, use the following command on each host for host-to-"
+"host IPsec, or each <abbrev>IPsec</abbrev> router for network-to-network "
+"IPsec:"
msgstr ""
+"Per avviare la connessione <abbrev>IPsec</abbrev>, usare il seguente comando "
+"su ciascun host, per una connessione host-to-host, o router, per una "
+"connessione network-to-network:"
#. Tag: screen
#, no-c-format
-msgid "[root at myServer ~] # /sbin/ifup <replaceable><nickname></replaceable>"
+msgid ""
+"[root at myServer ~] # /sbin/ifup <replaceable><nickname></replaceable>"
msgstr ""
+"[root at myServer ~] # /sbin/ifup <replaceable><nickname></replaceable>"
#. Tag: para
#, no-c-format
-msgid "where <replaceable><nickname></replaceable> is the nickname configured earlier, such as <computeroutput>ipsec0</computeroutput>."
+msgid ""
+"where <replaceable><nickname></replaceable> is the nickname "
+"configured earlier, such as <computeroutput>ipsec0</computeroutput>."
msgstr ""
+"dove, <replaceable><nickname></replaceable> è il nickname "
+"precedentemente configurato, come <computeroutput>ipsec0</computeroutput>."
#. Tag: para
#, no-c-format
msgid "To stop the connection, use the following command:"
-msgstr ""
+msgstr "Per interrompere la connessione, usare il seguente comando:"
#. Tag: screen
#, no-c-format
-msgid "[root at myServer ~] # /sbin/ifdown <replaceable><nickname></replaceable>"
+msgid ""
+"[root at myServer ~] # /sbin/ifdown <replaceable><nickname></"
+"replaceable>"
msgstr ""
+"[root at myServer ~] # /sbin/ifdown <replaceable><nickname></"
+"replaceable>"
More information about the docs-commits
mailing list