32 lines
557 B
Plaintext
32 lines
557 B
Plaintext
# /etc/ipsec.conf - strongSwan IPsec configuration file
|
|
|
|
config setup
|
|
plutodebug="control"
|
|
crlcheckinterval=180
|
|
strictcrlpolicy=no
|
|
charonstart=no
|
|
|
|
conn %default
|
|
ikelifetime=60m
|
|
keylife=20m
|
|
rekeymargin=3m
|
|
keyingtries=1
|
|
authby=xauthrsasig
|
|
xauth=server
|
|
left=PH_IP_MOON
|
|
leftnexthop=%direct
|
|
leftcert=moonCert.pem
|
|
leftid=@moon.strongswan.org
|
|
leftsubnet=10.1.0.0/16
|
|
leftfirewall=yes
|
|
right=%any
|
|
auto=add
|
|
|
|
conn rw-carol
|
|
rightid=carol@strongswan.org
|
|
rightsourceip=PH_IP_CAROL1
|
|
|
|
conn rw-dave
|
|
rightid=dave@strongswan.org
|
|
rightsourceip=PH_IP_DAVE1
|