File: ipsec.conf

package info (click to toggle)

libreswan 5.2-2.3

links: PTS, VCS
area: main
in suites: sid
size: 81,644 kB
sloc: ansic: 129,988; sh: 32,018; xml: 20,646; python: 10,303; makefile: 3,022; javascript: 1,506; sed: 574; yacc: 511; perl: 264; awk: 52

file content (42 lines) | stat: -rw-r--r-- 730 bytes

parent folder | download | duplicates (2)

# /etc/ipsec.conf - Libreswan IPsec configuration file

config setup
	ikev1-policy=accept
	logfile=/tmp/pluto.log
	logtime=no
	logappend=no
	dumpdir=/tmp
	plutodebug=all
	virtual-private=%v4:192.1.3.0/24

conn %default
	keyexchange=ikev1

conn north-east
	also=xauth-base
	left=%defaultroute
	leftcert=north

conn road-east
	also=xauth-base
	left=%defaultroute
	leftcert=road

conn east-any
	also=xauth-base
	left=%any
	leftaddresspool=192.0.2.100-192.0.2.200
	xauthby=alwaysok
	rightcert=east
	modecfgdns="1.2.3.4, 5.6.7.8"

conn xauth-base
	leftid=%fromcert
	rightid=%fromcert
	rightxauthserver=yes
	leftxauthclient=yes
	rightmodecfgserver=yes
	leftmodecfgclient=yes
	right=192.1.2.23
	rightsubnet=192.0.2.0/24
	modecfgpull=yes