Advertisement
Guest User

Untitled

a guest
Mar 30th, 2020
1,427
0
Never
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.65 KB | None | 0 0
  1. vpn {
  2. ipsec {
  3. allow-access-to-local-interface disable
  4. auto-firewall-nat-exclude enable
  5. esp-group FOO0 {
  6. compression disable
  7. lifetime 3600
  8. mode tunnel
  9. pfs enable
  10. proposal 1 {
  11. encryption aes128
  12. hash sha1
  13. }
  14. }
  15. ike-group FOO0 {
  16. dead-peer-detection {
  17. action hold
  18. interval 30
  19. timeout 120
  20. }
  21. ikev2-reauth no
  22. key-exchange ikev1
  23. lifetime 28800
  24. proposal 1 {
  25. dh-group 5
  26. encryption aes128
  27. hash sha1
  28. }
  29. }
  30. site-to-site {
  31. peer gbg.mydomain.se {
  32. authentication {
  33. mode pre-shared-secret
  34. pre-shared-secret ****************
  35. x509 {
  36. key {
  37. }
  38. }
  39. }
  40. connection-type initiate
  41. description garaget-ipsec
  42. ike-group FOO0
  43. ikev2-reauth inherit
  44. local-address any
  45. tunnel 1 {
  46. allow-nat-networks disable
  47. allow-public-networks disable
  48. esp-group FOO0
  49. local {
  50. prefix 192.168.64.0/24
  51. }
  52. remote {
  53. prefix 192.168.16.0/20
  54. }
  55. }
  56. }
  57. }
  58. }
  59. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement