| Gabriel Oginski | 4e88e04 | 2022-06-29 12:54:30 +0000 | [diff] [blame] | 1 | connections { |
| 2 | net-net { |
| 3 | local_addrs = 192.168.0.2 |
| 4 | remote_addrs = 192.168.0.1 |
| 5 | local { |
| 6 | auth = psk |
| 7 | id = sun.strongswan.org |
| 8 | } |
| 9 | remote { |
| 10 | auth = psk |
| 11 | id = moon.strongswan.org |
| 12 | } |
| 13 | children { |
| 14 | net-net { |
| 15 | local_ts = 192.168.200.0/24 |
| 16 | remote_ts = 192.168.100.0/24 |
| 17 | esp_proposals = aes128-sha1-modp2048 |
| 18 | rekey_time = 240m |
| 19 | } |
| 20 | } |
| 21 | version = 2 |
| 22 | mobike = yes |
| 23 | encap = no # NAT-T if needed |
| 24 | proposals = aes128-sha256-x25519 |
| 25 | } |
| 26 | } |
| 27 | secrets { |
| 28 | ike-net-net { |
| 29 | id = moon.strongswan.org |
| 30 | secret = simplepsk |
| 31 | } |
| 32 | } |
| 33 | |
| 34 | # Include config snippets |
| 35 | include conf.d/*.conf |