Merged libstrongswan options into charon section
This commit is contained in:
parent
f2a3a01134
commit
c683b389ba
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors pem pkcs1 af-alg gmp random nonce x509 revocation ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors pem pkcs1 af-alg gmp random nonce x509 revocation ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors pem pkcs1 af-alg gmp random nonce x509 revocation ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors pem pkcs1 af-alg gmp random nonce x509 revocation ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -3,8 +3,6 @@
|
||||||
charon {
|
charon {
|
||||||
load = curl pem pkcs1 gcrypt nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
load = curl pem pkcs1 gcrypt nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
||||||
send_vendor_id = yes
|
send_vendor_id = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -3,8 +3,6 @@
|
||||||
charon {
|
charon {
|
||||||
load = curl pem pkcs1 gcrypt nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
load = curl pem pkcs1 gcrypt nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
||||||
send_vendor_id = yes
|
send_vendor_id = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -3,8 +3,6 @@
|
||||||
charon {
|
charon {
|
||||||
load = curl pem pkcs1 gcrypt nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
load = curl pem pkcs1 gcrypt nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
||||||
send_vendor_id = yes
|
send_vendor_id = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -3,8 +3,6 @@
|
||||||
charon {
|
charon {
|
||||||
load = curl pem pkcs1 gcrypt nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
load = curl pem pkcs1 gcrypt nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
||||||
send_vendor_id = yes
|
send_vendor_id = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors pem pkcs1 gcrypt nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors pem pkcs1 gcrypt nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors pem pkcs1 gcrypt nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors pem pkcs1 gcrypt nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -4,8 +4,5 @@ charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
|
|
||||||
fragment_size = 1024
|
fragment_size = 1024
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -4,8 +4,5 @@ charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
|
|
||||||
fragment_size = 1024
|
fragment_size = 1024
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,11 +2,10 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 ntru revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 ntru revocation hmac stroke kernel-netlink socket-default updown
|
||||||
|
|
||||||
multiple_authentication = no
|
multiple_authentication = no
|
||||||
send_vendor_id = yes
|
send_vendor_id = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
plugins {
|
||||||
ntru {
|
ntru {
|
||||||
parameter_set = optimum
|
parameter_set = optimum
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = aes des sha1 sha2 md5 gmp random nonce hmac stroke kernel-netlink socket-default updown
|
load = aes des sha1 sha2 md5 gmp random nonce hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = aes des sha1 sha2 md5 gmp random nonce hmac stroke kernel-netlink socket-default updown
|
load = aes des sha1 sha2 md5 gmp random nonce hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default unity
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default unity
|
||||||
|
|
||||||
cisco_unity = yes
|
cisco_unity = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,14 +2,13 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default attr unity
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default attr unity
|
||||||
|
|
||||||
cisco_unity = yes
|
cisco_unity = yes
|
||||||
|
dh_exponent_ansi_x9_42 = no
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
attr {
|
attr {
|
||||||
split-exclude = 192.168.0.0/24
|
split-exclude = 192.168.0.0/24
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
|
||||||
}
|
|
||||||
|
|
|
@ -2,11 +2,10 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,11 +2,10 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,11 +2,10 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic resolve kernel-netlink socket-default stroke updown
|
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic resolve kernel-netlink socket-default stroke updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic resolve kernel-netlink socket-default stroke updown
|
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic resolve kernel-netlink socket-default stroke updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,10 +2,8 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic attr kernel-netlink socket-default stroke updown
|
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic attr kernel-netlink socket-default stroke updown
|
||||||
|
|
||||||
dns1 = 192.168.0.150
|
dns1 = 192.168.0.150
|
||||||
dns2 = 10.1.0.20
|
dns2 = 10.1.0.20
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac gmp random nonce xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,6 +2,9 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-radius eap-md5 xauth-eap updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-radius eap-md5 xauth-eap updown
|
||||||
|
|
||||||
|
dh_exponent_ansi_x9_42 = no
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
eap-radius {
|
eap-radius {
|
||||||
secret = gv6URkSs
|
secret = gv6URkSs
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,6 +2,9 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-radius updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-radius updown
|
||||||
|
|
||||||
|
dh_exponent_ansi_x9_42 = no
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
eap-radius {
|
eap-radius {
|
||||||
secret = gv6URkSs
|
secret = gv6URkSs
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
load = sha1 sha2 md5 aes des hmac pem pkcs1 x509 revocation gmp random nonce curl xauth-generic kernel-netlink socket-default updown stroke
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,10 +2,9 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
||||||
multiple_authentication = no
|
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
multiple_authentication = no
|
||||||
|
|
||||||
x509 {
|
x509 {
|
||||||
enforce_critical = no
|
enforce_critical = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,5 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-netlink socket-default updown
|
||||||
|
|
||||||
multiple_authentication = no
|
multiple_authentication = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
dh_exponent_ansi_x9_42 = no
|
dh_exponent_ansi_x9_42 = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -7,11 +7,6 @@ charon {
|
||||||
dnscert {
|
dnscert {
|
||||||
enable = yes
|
enable = yes
|
||||||
}
|
}
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
|
||||||
unbound {
|
unbound {
|
||||||
# trust_anchors = /etc/ipsec.d/dnssec.keys
|
# trust_anchors = /etc/ipsec.d/dnssec.keys
|
||||||
# resolv_conf = /etc/resolv.conf
|
# resolv_conf = /etc/resolv.conf
|
||||||
|
|
|
@ -7,11 +7,6 @@ charon {
|
||||||
dnscert {
|
dnscert {
|
||||||
enable = yes
|
enable = yes
|
||||||
}
|
}
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
|
||||||
unbound {
|
unbound {
|
||||||
# trust_anchors = /etc/ipsec.d/dnssec.keys
|
# trust_anchors = /etc/ipsec.d/dnssec.keys
|
||||||
# resolv_conf = /etc/resolv.conf
|
# resolv_conf = /etc/resolv.conf
|
||||||
|
|
|
@ -7,11 +7,6 @@ charon {
|
||||||
ipseckey {
|
ipseckey {
|
||||||
enable = yes
|
enable = yes
|
||||||
}
|
}
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
|
||||||
unbound {
|
unbound {
|
||||||
# trust_anchors = /etc/ipsec.d/dnssec.keys
|
# trust_anchors = /etc/ipsec.d/dnssec.keys
|
||||||
# resolv_conf = /etc/resolv.conf
|
# resolv_conf = /etc/resolv.conf
|
||||||
|
|
|
@ -7,11 +7,6 @@ charon {
|
||||||
ipseckey {
|
ipseckey {
|
||||||
enable = yes
|
enable = yes
|
||||||
}
|
}
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
|
||||||
unbound {
|
unbound {
|
||||||
# trust_anchors = /etc/ipsec.d/dnssec.keys
|
# trust_anchors = /etc/ipsec.d/dnssec.keys
|
||||||
# resolv_conf = /etc/resolv.conf
|
# resolv_conf = /etc/resolv.conf
|
||||||
|
|
|
@ -2,11 +2,10 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 ntru revocation hmac stroke kernel-netlink socket-default updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 ntru revocation hmac stroke kernel-netlink socket-default updown
|
||||||
|
|
||||||
multiple_authentication = no
|
multiple_authentication = no
|
||||||
send_vendor_id = yes
|
send_vendor_id = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
plugins {
|
||||||
ntru {
|
ntru {
|
||||||
parameter_set = optimum
|
parameter_set = optimum
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc cmac ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc cmac ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc cmac ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc cmac ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc cmac ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 pkcs8 gmp random nonce x509 revocation hmac xcbc cmac ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-aka eap-aka-3gpp2 updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-aka eap-aka-3gpp2 updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-aka eap-aka-3gpp2 updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-aka eap-aka-3gpp2 updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,8 +2,6 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-sim eap-sim-file updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-sim eap-sim-file updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-sim eap-sim-file updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default fips-prf eap-sim eap-sim-file updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
@ -4,9 +4,7 @@ charon {
|
||||||
load = soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-libipsec kernel-netlink socket-default updown
|
load = soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-libipsec kernel-netlink socket-default updown
|
||||||
|
|
||||||
initiator_only = yes
|
initiator_only = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -4,9 +4,7 @@ charon {
|
||||||
load = soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-libipsec kernel-netlink socket-default updown
|
load = soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-libipsec kernel-netlink socket-default updown
|
||||||
|
|
||||||
initiator_only = yes
|
initiator_only = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-libipsec kernel-netlink socket-default updown
|
load = soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-libipsec kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -3,9 +3,7 @@
|
||||||
charon {
|
charon {
|
||||||
load = curl pem pkcs1 random nonce openssl revocation hmac stroke kernel-netlink socket-default updown
|
load = curl pem pkcs1 random nonce openssl revocation hmac stroke kernel-netlink socket-default updown
|
||||||
multiple_authentication = no
|
multiple_authentication = no
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
x509 {
|
x509 {
|
||||||
enforce_critical = no
|
enforce_critical = no
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors pem pkcs1 openssl revocation nonce xcbc cmac ctr ccm stroke kernel-netlink socket-default updown
|
load = curl test-vectors pem pkcs1 openssl revocation nonce xcbc cmac ctr ccm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc cmac ctr ccm gcm stroke kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc cmac ctr ccm gcm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors pem pkcs1 openssl revocation nonce xcbc cmac ctr ccm stroke kernel-netlink socket-default updown
|
load = curl test-vectors pem pkcs1 openssl revocation nonce xcbc cmac ctr ccm stroke kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -4,14 +4,13 @@ charon {
|
||||||
load = test-vectors soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-netlink socket-default
|
load = test-vectors soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-netlink socket-default
|
||||||
|
|
||||||
initiator_only = yes
|
initiator_only = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -7,14 +7,13 @@ charon {
|
||||||
retransmit_base = 1.5
|
retransmit_base = 1.5
|
||||||
retransmit_tries = 3
|
retransmit_tries = 3
|
||||||
initiator_only = yes
|
initiator_only = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -2,14 +2,14 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = test-vectors soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-netlink socket-default
|
load = test-vectors soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-netlink socket-default
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -4,14 +4,13 @@ charon {
|
||||||
load = test-vectors soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-netlink socket-default
|
load = test-vectors soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-netlink socket-default
|
||||||
|
|
||||||
initiator_only = yes
|
initiator_only = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -7,14 +7,13 @@ charon {
|
||||||
retransmit_base = 1.5
|
retransmit_base = 1.5
|
||||||
retransmit_tries = 3
|
retransmit_tries = 3
|
||||||
initiator_only = yes
|
initiator_only = yes
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -2,14 +2,14 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = test-vectors soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-netlink socket-default
|
load = test-vectors soup pem pkcs1 pkcs8 random nonce x509 revocation openssl stroke kernel-netlink socket-default
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
|
|
||||||
crypto_test {
|
crypto_test {
|
||||||
required = yes
|
required = yes
|
||||||
on_add = yes
|
on_add = yes
|
||||||
}
|
}
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
openssl {
|
openssl {
|
||||||
fips_mode = 2
|
fips_mode = 2
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-pfkey kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-pfkey kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-pfkey kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-pfkey kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,9 +2,7 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-pfkey kernel-netlink socket-default updown
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac xcbc stroke kernel-pfkey kernel-netlink socket-default updown
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -7,9 +7,7 @@ charon {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown sqlite sql
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown sqlite sql
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -7,9 +7,7 @@ charon {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown sqlite sql
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown sqlite sql
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -7,9 +7,7 @@ charon {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown sqlite sql
|
load = curl test-vectors aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default updown sqlite sql
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
integrity_test = yes
|
||||||
crypto_test {
|
crypto_test {
|
||||||
on_add = yes
|
on_add = yes
|
||||||
|
|
|
@ -2,20 +2,14 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default eap-identity eap-md5 eap-ttls eap-tnc tnc-imc tnc-tnccs tnccs-11 updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default eap-identity eap-md5 eap-ttls eap-tnc tnc-imc tnc-tnccs tnccs-11 updown
|
||||||
|
|
||||||
multiple_authentication=no
|
multiple_authentication=no
|
||||||
|
integrity_test = yes
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
eap-tnc {
|
eap-tnc {
|
||||||
protocol = tnccs-1.1
|
protocol = tnccs-1.1
|
||||||
}
|
}
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
|
||||||
}
|
|
||||||
|
|
||||||
libimcv {
|
|
||||||
plugins {
|
|
||||||
imc-test {
|
imc-test {
|
||||||
command = allow
|
command = allow
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,20 +2,14 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default eap-identity eap-md5 eap-ttls eap-tnc tnc-imc tnc-tnccs tnccs-20 updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default eap-identity eap-md5 eap-ttls eap-tnc tnc-imc tnc-tnccs tnccs-20 updown
|
||||||
|
|
||||||
multiple_authentication=no
|
multiple_authentication=no
|
||||||
|
integrity_test = yes
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
eap-tnc {
|
eap-tnc {
|
||||||
protocol = tnccs-2.0
|
protocol = tnccs-2.0
|
||||||
}
|
}
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
|
||||||
}
|
|
||||||
|
|
||||||
libimcv {
|
|
||||||
plugins {
|
|
||||||
imc-test {
|
imc-test {
|
||||||
command = isolate
|
command = isolate
|
||||||
}
|
}
|
||||||
|
|
|
@ -2,7 +2,10 @@
|
||||||
|
|
||||||
charon {
|
charon {
|
||||||
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default eap-identity eap-ttls eap-md5 eap-tnc tnc-tnccs tnccs-dynamic tnccs-11 tnccs-20 tnc-imv updown
|
load = curl aes des sha1 sha2 md5 pem pkcs1 gmp random nonce x509 revocation hmac stroke kernel-netlink socket-default eap-identity eap-ttls eap-md5 eap-tnc tnc-tnccs tnccs-dynamic tnccs-11 tnccs-20 tnc-imv updown
|
||||||
|
|
||||||
multiple_authentication=no
|
multiple_authentication=no
|
||||||
|
integrity_test = yes
|
||||||
|
|
||||||
plugins {
|
plugins {
|
||||||
eap-ttls {
|
eap-ttls {
|
||||||
phase2_method = md5
|
phase2_method = md5
|
||||||
|
@ -14,17 +17,3 @@ charon {
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
libstrongswan {
|
|
||||||
integrity_test = yes
|
|
||||||
}
|
|
||||||
|
|
||||||
libimcv {
|
|
||||||
plugins {
|
|
||||||
imv-scanner {
|
|
||||||
closed_port_policy = yes
|
|
||||||
tcp_ports = 22
|
|
||||||
udp_ports = 500 4500
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
Loading…
Reference in New Issue