Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- version 2.0
- config setup
- virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:!192.168.42.0/23
- protostack=netkey
- nhelpers=0
- interfaces=%defaultroute
- uniqueids=no
- conn shared
- left=10.138.0.2
- leftid=104.198.97.161
- right=%any
- encapsulation=yes
- authby=secret
- pfs=no
- rekey=no
- keyingtries=5
- dpddelay=30
- dpdtimeout=120
- dpdaction=clear
- ike=3des-sha1,aes-sha1,aes256-sha2_512,aes256-sha2_256
- phase2alg=3des-sha1,aes-sha1,aes256-sha2_512,aes256-sha2_256
- sha2-truncbug=yes
- conn l2tp-psk
- auto=add
- leftsubnet=10.138.0.2/32
- leftnexthop=%defaultroute
- leftprotoport=17/1701
- rightprotoport=17/%any
- type=transport
- phase2=esp
- also=shared
- conn xauth-psk
- auto=add
- #leftsubnet=10.0.0.0/8
- leftsubnets="10.138.0.0/20, 10.128.0.0/20"
- rightaddresspool=192.168.43.10-192.168.43.250
- modecfgdns1=8.8.8.8
- modecfgdns2=8.8.4.4
- leftxauthserver=yes
- rightxauthclient=yes
- leftmodecfgserver=yes
- rightmodecfgclient=yes
- modecfgpull=yes
- xauthby=file
- ike-frag=yes
- ikev2=never
- cisco-unity=yes
- also=shared
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement