synopsis:
how to setup racoon to use x.509 certs instead of shared-keys.
ipsec-racoon-x.509-certs.pdf
no guarantee is given for the information contained within the document.