aboutsummaryrefslogtreecommitdiffstats
path: root/extras/strongswan/vpp_sswan/docker/configs/swanctl_docker1.conf
diff options
context:
space:
mode:
authorGabriel Oginski <gabrielx.oginski@intel.com>2022-07-08 07:46:32 +0000
committerFan Zhang <royzhang1980@hotmail.com>2022-09-28 17:46:04 +0000
commit95875774bc69a81b1a17963642fc574070ba37d0 (patch)
tree3792511fa634de36caad77279f8d04c381c4474b /extras/strongswan/vpp_sswan/docker/configs/swanctl_docker1.conf
parent4e88e041ad47bf422bbb2a0940f77aba11ea2178 (diff)
vpp-swan: Add scripts for testing
Added scripts to reparing setups for testing To prepare and run containers: sudo ./extras/strongswan/vpp_sswan/docker/run.sh prepare_containers To prepare setups: sudo ./extras/strongswan/vpp_sswan/docker/run.sh config To clean-up settups: sudo ./extras/strongswan/vpp_sswan/docker/run.sh clean To deleted all containers and images in Docker: sudo ./extras/strongswan/vpp_sswan/docker/run.sh deleted Type: feature Signed-off-by: Gabriel Oginski <gabrielx.oginski@intel.com> Change-Id: I77f01c0419dccc95f610046c8552ae825f2c7e12
Diffstat (limited to 'extras/strongswan/vpp_sswan/docker/configs/swanctl_docker1.conf')
-rw-r--r--extras/strongswan/vpp_sswan/docker/configs/swanctl_docker1.conf35
1 files changed, 35 insertions, 0 deletions
diff --git a/extras/strongswan/vpp_sswan/docker/configs/swanctl_docker1.conf b/extras/strongswan/vpp_sswan/docker/configs/swanctl_docker1.conf
new file mode 100644
index 00000000000..ac24bf5bb5d
--- /dev/null
+++ b/extras/strongswan/vpp_sswan/docker/configs/swanctl_docker1.conf
@@ -0,0 +1,35 @@
+connections {
+ net-net {
+ local_addrs = 192.168.0.2
+ remote_addrs = 192.168.0.1
+ local {
+ auth = psk
+ id = sun.strongswan.org
+ }
+ remote {
+ auth = psk
+ id = moon.strongswan.org
+ }
+ children {
+ net-net {
+ local_ts = 192.168.200.0/24
+ remote_ts = 192.168.100.0/24
+ esp_proposals = aes128-sha1-modp2048
+ rekey_time = 240m
+ }
+ }
+ version = 2
+ mobike = yes
+ encap = no # NAT-T if needed
+ proposals = aes128-sha256-x25519
+ }
+}
+secrets {
+ ike-net-net {
+ id = moon.strongswan.org
+ secret = simplepsk
+ }
+}
+
+# Include config snippets
+include conf.d/*.conf