Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- version 2.0
- config setup
- nat_traversal=yes
- virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12
- oe=off
- protostack=netkey
- #plutodebug=all
- #klipsdebug=all
- conn L2TP-PSK-NAT
- rightsubnet=vhost:%priv
- also=L2TP-PSK-noNAT
- conn L2TP-PSK-noNAT
- authby=secret
- pfs=no
- auto=add
- keyingtries=3
- rekey=no
- ikelifetime=8h
- keylife=1h
- #type=tunnel
- left=208.52.140.1
- leftprotoport=17/1701
- right=%any
- rightprotoport=17/%any
- conn BONNIELANE
- authby=rsasig
- type=tunnel
- pfs=no
- auto=add
- #keyingtries=3
- keyingtries=%forever
- rekey=no
- #ikeylifetime=8h
- #type=tunnel
- left=208.52.140.1
- leftsubnet=10.0.0.0/8
- #leftid=@ipsec.athenshousing.org
- leftid="C=US, ST=GA, L=Athens, O=Athens Housing Authority, OU=Central Office IT, CN=ipsec.athenshousing.org, E=root@athenshousing.org"
- leftrsasigkey=%cert
- leftcert=/etc/ipsec.d/certs/ipsec.pem
- rightrsasigkey=%cert
- rightcert=/etc/ipsec.d/certs/bonnielane.pem
- #rightid=@bonnielane.athenshousing.org
- right=%any
- rightid="C=US, ST=GA, L=Athens, O=Athens Housing Authority, OU=Bonnie Lane Router, CN=bonnielane.athenshousing.org, E=root@athenshousing.org"
- #rightprotoport=17/500
- #leftprotoport=17/500
- rightsubnet=192.168.77.0/24
- #leftid="C=US, ST=GA, L=Athens, O=Athens Housing Authority, OU=Central IT, CN=Main Office Router/emailAddress=root@athenshousing.org"
- #rightsubnet=192.168.77.0/24
- #rightid="C=US, ST=GA, L=Athens, O=Athens Housing Authority, OU=Bonnie Lane Router, CN=bonnielane.athenshousing.org/emailAddress=root@athenshousing.org"
- ikelifetime=3h
- keylife=2h
- dpddelay=5
- dpdtimeout=15
- dpdaction=restart
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
