Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- config setup
- charondebug="ike 1, knl 1, cfg 0"
- uniqueids=no
- conn ikev2-vpn
- auto=add
- compress=no
- type=tunnel
- keyexchange=ikev2
- fragmentation=yes
- forceencaps=yes
- ike=aes256-sha1-modp1024,3des-sha1-modp1024!
- esp=aes256-sha1,3des-sha1!
- dpdaction=clear
- dpddelay=300s
- rekey=no
- left=%any
- leftid=<own IP>
- leftcert=/etc/ipsec.d/certs/vpn-server-cert.pem
- leftsendcert=always
- leftsubnet=0.0.0.0/0
- right=%any
- rightid=%any
- rightauth=eap-mschapv2
- rightsourceip=10.10.10.0/24
- rightdns=8.8.8.8,8.8.4.4
- rightsendcert=never
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement