SHARE
TWEET

Untitled

a guest Jun 18th, 2019 65 Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
  1. libtls {
  2.   suites = TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
  3. }
  4. charon {
  5.   plugins {
  6.     dhcp {
  7.       # Always use the configured server address.
  8.       force_server_address = yes
  9.  
  10.       # Derive user-defined MAC address from hash of IKE identity.
  11.       identity_lease = yes
  12.  
  13.       # Interface name the plugin uses for address allocation.
  14.       interface = eth0
  15.  
  16.       # Whether to load the plugin. Can also be an integer to increase the
  17.       # priority of this plugin.
  18.       load = yes
  19.  
  20.       # DHCP server unicast or broadcast IP address.
  21.       server = 10.0.2.255
  22.     }
  23.   }
  24. }
  25.      
  26. conn %default
  27.     ike=aes256gcm16-sha384-modp3072!
  28.     esp=aes256gcm16-sha384-modp3072!
  29.  
  30. conn ikev2
  31.     auto=start
  32.     leftid=client@my-vpn.com
  33.     leftsourceip=%config
  34.     leftauth=eap-tls
  35.     leftcert=vpn-client.crt
  36.     right=my-vpn.com
  37.     rightid=my-vpn.com
  38.     rightsubnet=0.0.0.0/0
  39.     rightauth=pubkey
  40.      
  41. host client {
  42.   hardware ethernet a1-b2-c3-d4-e5-f6;
  43.   fixed-address 10.0.2.2;
  44. }
RAW Paste Data
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy. OK, I Understand
 
Top