1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
|
# /etc/ipsec.conf - Libreswan IPsec configuration file
config setup
ikev1-policy=accept
# put the logs in /tmp for the UMLs, so that we can operate
# without syslogd, which seems to break on UMLs
logfile=/tmp/pluto.log
logtime=no
logappend=no
dumpdir=/tmp
plutodebug=all
conn %default
keyexchange=ikev1
conn westnet-all
# Left security gateway, subnet behind it, next hop toward right.
leftid=@west
# Right security gateway, subnet behind it, next hop toward left.
rightid=@east
also=west-leftrsasigkey
also=east-rightrsasigkey
left=192.1.2.45
leftnexthop=192.1.2.23
right=192.1.2.23
rightnexthop=192.1.2.45
leftsubnet=192.0.1.0/24
rightsubnet=0.0.0.0/0
include /testing/baseconfigs/all/etc/ipsec.d/rsasigkey.conf
conn orient1
authby=secret
left=%defaultroute
leftnexthop=%defaultroute
right=%any
rightnexthop=%defaultroute
conn orient2
authby=secret
left=%defaultroute
#leftnexthop=%defaultroute
right=%any
rightnexthop=%defaultroute
conn orient3
authby=secret
left=%defaultroute
leftnexthop=%defaultroute
right=%any
#rightnexthop=%defaultroute
conn orient4
authby=secret
left=%defaultroute
#leftnexthop=%defaultroute
right=%any
#rightnexthop=%defaultroute
conn orient5
authby=secret
left=192.1.2.45
#leftnexthop=%defaultroute
right=8.8.8.8
rightnexthop=%defaultroute
conn orient6
authby=secret
left=192.1.2.45
leftnexthop=%defaultroute
right=8.8.8.8
rightnexthop=%defaultroute
conn orient7
authby=secret
left=192.1.2.45
leftnexthop=%defaultroute
right=8.8.8.8
#rightnexthop=%defaultroute
conn orient8
authby=secret
left=192.1.2.45
#leftnexthop=%defaultroute
right=8.8.8.8
#rightnexthop=%defaultroute
conn orient9
authby=secret
left=%defaultroute
leftnexthop=%defaultroute
right=8.8.8.8
rightnexthop=%defaultroute
conn orient10
authby=secret
left=%defaultroute
#leftnexthop=%defaultroute
right=8.8.8.8
rightnexthop=%defaultroute
conn orient11
authby=secret
left=%defaultroute
leftnexthop=%defaultroute
right=8.8.8.8
#rightnexthop=%defaultroute
conn orient12
authby=secret
left=%defaultroute
#leftnexthop=%defaultroute
right=8.8.8.8
#rightnexthop=%defaultroute
|
