Untitled

cat /etc/ipsec.conf
version 2.0
config setup
    protostack=netkey
    interfaces=%defaultroute
    klipsdebug=none
    plutodebug=none
    nat_traversal=yes
    virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.168.0.0/16
conn %default
    keyingtries=3
    compress=yes
    disablearrivalcheck=no
    authby=secret
    type=tunnel
    keyexchange=ike
    ikelifetime=240m
    keylife=60m

include /etc/ipsec.d/l2tp-psk.conf

conn roadwarrior
    pfs=no
    left=сервер ########### The IP address of the VPN server
    leftnexthop=гейт ### The IP address of the gateway of VPN server
    leftprotoport=17/1701
    right=%any
    rightprotoport=17/1701
    rightsubnet=vhost:%priv,%no,%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
    auto=add


cat /etc/ipsec.d/l2tp-psk.conf
conn L2TP-PSK-NAT
    rightsubnet=vhost:%priv
    also=L2TP-PSK-noNAT
conn L2TP-PSK-noNAT
    authby=secret
    pfs=no
    auto=add
    keyingtries=1
    rekey=no
    ikelifetime=8h
    keylife=1h
    type=transport
    left=%defaultroute
    leftprotoport=17/1701
    right=%any
    rightprotoport=17/0