diff options
Diffstat (limited to 'extras/strongswan/configs/responder_keepalive/ipsec.conf')
-rw-r--r-- | extras/strongswan/configs/responder_keepalive/ipsec.conf | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/extras/strongswan/configs/responder_keepalive/ipsec.conf b/extras/strongswan/configs/responder_keepalive/ipsec.conf new file mode 100644 index 00000000000..7ca0d413495 --- /dev/null +++ b/extras/strongswan/configs/responder_keepalive/ipsec.conf @@ -0,0 +1,23 @@ +config setup + strictcrlpolicy=no + +conn initiator + mobike=no + auto=add + type=tunnel + keyexchange=ikev2 + ike=aes256gcm16-prfsha256-modp2048! + esp=aes256gcm16-esn! + lifetime=1h + +# local: + leftauth=psk + leftid=@roadwarrior.vpn.example.com + leftsubnet=192.168.5.0/24 + +# remote: (gateway) + rightid=@vpp.home + right=192.168.10.2 + rightauth=psk + rightsubnet=192.168.3.0/24 + |