2011-06-15 12:06:48 +00:00
|
|
|
# /etc/strongswan.conf - strongSwan configuration file
|
|
|
|
|
|
|
|
charon {
|
|
|
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random x509 revocation hmac xcbc stroke kernel-netlink socket-default eap-identity eap-ttls eap-md5 eap-tnc tnccs-20 tnc-imv updown
|
|
|
|
multiple_authentication=no
|
|
|
|
plugins {
|
|
|
|
eap-ttls {
|
|
|
|
phase2_method = md5
|
|
|
|
phase2_piggyback = yes
|
|
|
|
phase2_tnc = yes
|
|
|
|
}
|
|
|
|
eap-tnc {
|
|
|
|
protocol = tnccs-2.0
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
libimcv {
|
|
|
|
plugins {
|
|
|
|
imv-test {
|
|
|
|
rounds = 0
|
|
|
|
}
|
2011-07-06 19:55:17 +00:00
|
|
|
imv-scanner {
|
|
|
|
closed_port_policy = yes
|
|
|
|
tcp_ports = 22
|
|
|
|
udp_ports = 500 4500
|
|
|
|
}
|
2011-06-15 12:06:48 +00:00
|
|
|
}
|
|
|
|
}
|