| Filip Tehlar | d5a3380 | 2021-02-20 02:26:17 +0000 | [diff] [blame] | 1 | config setup |
| 2 | strictcrlpolicy=no | ||||
| 3 | |||||
| 4 | conn initiator | ||||
| 5 | mobike=no | ||||
| 6 | auto=add | ||||
| 7 | type=tunnel | ||||
| 8 | keyexchange=ikev2 | ||||
| 9 | ike=aes256gcm16-prfsha256-modp2048! | ||||
| 10 | esp=aes256gcm16-esn! | ||||
| 11 | lifetime=1m | ||||
| 12 | |||||
| 13 | # local: | ||||
| 14 | leftauth=psk | ||||
| 15 | leftid=@roadwarrior2.vpn.example.com | ||||
| 16 | leftsubnet=192.168.5.0/24 | ||||
| 17 | |||||
| 18 | # remote: (gateway) | ||||
| 19 | rightid=@vpp.home | ||||
| 20 | right=192.168.10.2 | ||||
| 21 | rightauth=psk | ||||
| 22 | rightsubnet=192.168.3.0/24 | ||||
| 23 | |||||