35 lines
720 B
Plaintext
Executable File
35 lines
720 B
Plaintext
Executable File
connections {
|
|
|
|
gw-gw {
|
|
local_addrs = 192.168.0.2
|
|
remote_addrs = 192.168.0.1
|
|
|
|
local {
|
|
auth = pubkey
|
|
certs = sunCert.pem
|
|
id = sun.strongswan.org
|
|
}
|
|
remote {
|
|
auth = pubkey
|
|
id = moon.strongswan.org
|
|
}
|
|
children {
|
|
net-net {
|
|
local_ts = 10.2.0.0/16
|
|
remote_ts = 10.1.0.0/16
|
|
|
|
start_action = none
|
|
updown = /usr/local/libexec/ipsec/_updown iptables
|
|
rekey_time = 10m
|
|
esp_proposals = aes128gcm128-modp2048
|
|
}
|
|
}
|
|
|
|
version = 2
|
|
mobike = no
|
|
reauth_time = 60m
|
|
rekey_time = 20m
|
|
proposals = aes128-sha256-modp2048
|
|
}
|
|
}
|