41 lines
749 B
Plaintext
Executable File
41 lines
749 B
Plaintext
Executable File
connections {
|
|
|
|
nat-t {
|
|
remote_addrs = 192.168.0.2
|
|
vips = 0.0.0.0
|
|
|
|
local {
|
|
auth = pubkey
|
|
certs = aliceCert.pem
|
|
id = alice@strongswan.org
|
|
}
|
|
remote {
|
|
auth = pubkey
|
|
id = sun.strongswan.org
|
|
}
|
|
children {
|
|
nat-t {
|
|
remote_ts = 0.0.0.0/0
|
|
|
|
updown = /usr/local/libexec/ipsec/_updown iptables
|
|
esp_proposals = aes128gcm128-modp3072
|
|
}
|
|
}
|
|
version = 2
|
|
proposals = aes128-sha256-modp3072
|
|
}
|
|
|
|
local-net {
|
|
|
|
children {
|
|
local-net {
|
|
local_ts = 10.1.0.0/16
|
|
remote_ts = 10.1.0.0/16
|
|
|
|
mode = pass
|
|
start_action = trap
|
|
}
|
|
}
|
|
}
|
|
}
|