| 123456789101112131415161718192021222324252627282930 |
- # /etc/ipsec.conf - strongSwan IPsec configuration file
- config setup
- conn %default
- ikelifetime=60m
- keylife=20m
- rekeymargin=3m
- keyingtries=1
- keyexchange=ikev2
- conn research
- rightauth=pubkey-sha384-sha256
- leftsubnet=10.1.0.0/28
- also=rw
- auto=add
- conn accounting
- rightauth=pubkey-sha512-sha256
- leftsubnet=10.1.0.16/28
- also=rw
- auto=add
- conn rw
- left=PH_IP_MOON
- leftid=@moon.strongswan.org
- leftcert=moonCert.pem
- leftauth=pubkey
- leftfirewall=yes
- right=%any
|
