API tools faq
paste
Guest User

Untitled

a guest
Oct 18th, 2018
93
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 0.88 KB | None | 0 0
raw download clone embed print report
  1. # /etc/ipsec.conf
  2.  
  3. config setup
  4. charondebug="ike 1, knl 1, cfg 0"
  5. uniqueids=no
  6.  
  7. conn ikev2-vpn
  8. auto=add
  9. compress=no
  10. type=tunnel
  11. keyexchange=ikev2
  12. fragmentation=yes
  13. forceencaps=yes
  14.  
  15. dpdaction=clear
  16. dpddelay=300s
  17. dpdtimeout=1800s
  18. ike=aes256-aes192-aes128-sha384-sha256-sha1-modp3072-modp2048-modp1536-modp1024!
  19. rekey=no
  20. left=%any
  21. leftid=my.domain.com
  22. leftauth=pubkey
  23. leftcert=fullchain.cer
  24. leftsendcert=always
  25. leftsubnet=0.0.0.0/0
  26. right=%any
  27. rightid=%any
  28. rightauth=eap-mschapv2
  29. rightsourceip=10.10.10.0/24
  30. rightdns=8.8.8.8,8.8.4.4
  31. rightsendcert=never
  32. eap_identity=%identity
  33.  
  34. conn static_ip___staticuser200
  35. also=ikev2-vpn
  36. rightid=staticuser200
  37. rightsourceip=10.10.10.200/32
  38.  
  39. conn static_ip___staticuser201
  40. also=ikev2-vpn
  41. rightid=staticuser201
  42. rightsourceip=10.10.10.201/32
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!