I'm trying to set up an IPsec connection, using racoon (since it seems to be the default IPsec server for Debian). It sets up the VPN tunnel just fine, but it's not assigning internal IPs. The clients are using their actual IPs, instead.

Here's my configuration file:

path pre_shared_key "/etc/racoon/psk.txt";
path certificate "/etc/racoon/certs";

log debug;

remote anonymous {
verify_identifier off;
generate_policy on;
passive on;
exchange_mode aggressive;
peers_identifier fqdn "mydomain.com" ;
lifetime time 24 hour;
nat_traversal force;
proposal {
encryption_algorithm 3des;
hash_algorithm md5;
authentication_method pre_shared_key;
dh_group modp1024;
}
}

sainfo anonymous {
pfs_group modp1024;
encryption_algorithm aes 256;
authentication_algorithm hmac_sha1;
compression_algorithm deflate;
}

mode_cfg
{
conf_source local;
pool_size 253;
network4 192.168.19.1;
netmask4 255.255.255.0;
dns4 10.0.0.65;
dns4 10.1.0.65;
wins4 10.0.0.65;
default_domain "mydomain.local";
split_dns "mydomain.local";
}