API tools faq
paste
Advertisement
PJO2

strongswan configuration

PJO2
Feb 14th, 2020
475
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 1.32 KB | None | 0 0
raw download clone embed print report
  1. localhost:~# cat /etc/strongswan.d/charon.conf
  2. # Options for the charon IKE daemon.
  3. charon {
  4. install_routes = no
  5. install_virtual_ip_on = ipsec0
  6. }
  7.  
  8. ---
  9. localhost:~# cat /etc/swanctl/swanctl.conf
  10. connections {
  11. flex {
  12. dpd_delay = 300
  13. local {
  14. id = alpine65@sclab.space
  15. auth = psk
  16. }
  17.  
  18. remote {
  19. id = hub.sclab.space
  20. auth = psk
  21. }
  22. children {
  23. flex {
  24. local_ts = 0.0.0.0/0
  25. remote_ts = 0.0.0.0/0
  26. esp_proposals = aes128-sha1
  27. # use mark for vti interfaces ...
  28. mark_in = 100
  29. mark_out = 100
  30. dpd_action = restart
  31. }
  32. }
  33. remote_addrs = 172.16.63.63
  34. version = 2
  35. proposals = aes256-sha512-modp2048
  36. vips = 0.0.0.0
  37. }
  38. }
  39. secrets {
  40. ike_flex {
  41. secret = csr-flex
  42. id_1 = alpine65@sclab.space
  43. id_2 = hub.sclab.space
  44. }
  45. }
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!