NoPaste

strongswan-example-config

von heisenberg

SNIPPET_TEXT:
  1. connections {
  2.    gw-gw {
  3.         version = 2
  4.         local_addrs  = 1.1.2.10
  5.         remote_addrs = 1.8.9.20
  6.         remote {
  7.             auth = psk
  8.             id = 1.8.9.20
  9.         }
  10.         local {
  11.             auth = psk
  12.             id = 1.1.2.10
  13.             revocation = strict
  14.         }
  15.         rekey_time=120m
  16.         reauth_time=0m
  17.         over_time=9m
  18.         rand_time=9m
  19.         keyingtries=0
  20.         proposals = aes128-sha2_256-modp2048,default
  21.         mobike = yes
  22.         children {
  23.             gw-gw {
  24.                 start_action = start
  25.                 dpd_action = trap
  26.                 ipcomp = no
  27.                 local_ts  = 192.168.168.0/24
  28.                 remote_ts = 172.29.170.0/24
  29.                 mode = tunnel
  30.                 life_time=540m
  31.                 rekey_time=531m
  32.                 rand_time=9m
  33.                 esp_proposals = "aes128-sha2_256-modp2048,aes128-sha1-modp2048,aes128-sha1-modp3072,aes128-sha1-modp4096,aes128-sha1-modp6144,aes128-sha1-modp8192,aes128-sha1-ecp192,\
  34. aes128-sha1-ecp224,aes128-sha1-ecp256,aes128-sha1-ecp384,aes128-sha1-ecp521,aes128-sha256-modp2048,aes128-sha256-modp3072,\
  35. aes128-sha256-modp4096,aes128-sha256-modp6144,aes128-sha256-modp8192,aes128-sha256-ecp192,aes128-sha256-ecp224,aes128-sha256-ecp256,\
  36. aes128-sha256-ecp384,aes128-sha256-ecp521,aes128-aesxcbc-modp2048,aes128-aesxcbc-modp3072,aes128-aesxcbc-modp4096,aes128-aesxcbc-modp6144,\
  37. aes128-aesxcbc-modp8192,aes128-aesxcbc-ecp192,aes128-aesxcbc-ecp224,aes128-aesxcbc-ecp256,aes128-aesxcbc-ecp384,aes128-aesxcbc-ecp521,\
  38. aes192-sha1-modp2048,aes192-sha1-modp3072,aes192-sha1-modp4096,aes192-sha1-modp6144,aes192-sha1-modp8192,aes192-sha1-ecp192,\
  39. aes192-sha1-ecp224,aes192-sha1-ecp256,aes192-sha1-ecp384,aes192-sha1-ecp521,aes192-sha256-modp2048,aes192-sha256-modp3072,\
  40. aes192-sha256-modp4096,aes192-sha256-modp6144,aes192-sha256-modp8192,aes192-sha256-ecp192,aes192-sha256-ecp224,aes192-sha256-ecp256,\
  41. aes192-sha256-ecp384,aes192-sha256-ecp521,aes192-aesxcbc-modp2048,aes192-aesxcbc-modp3072,aes192-aesxcbc-modp4096,aes192-aesxcbc-modp6144,\
  42. aes192-aesxcbc-modp8192,aes192-aesxcbc-ecp192,aes192-aesxcbc-ecp224,aes192-aesxcbc-ecp256,aes192-aesxcbc-ecp384,aes192-aesxcbc-ecp521,\
  43. aes256-sha1-modp2048,aes256-sha1-modp3072,aes256-sha1-modp4096,aes256-sha1-modp6144,aes256-sha1-modp8192,aes256-sha1-ecp192,\
  44. aes256-sha1-ecp224,aes256-sha1-ecp256,aes256-sha1-ecp384,aes256-sha1-ecp521,aes256-sha256-modp2048,aes256-sha256-modp3072,\
  45. aes256-sha256-modp4096,aes256-sha256-modp6144,aes256-sha256-modp8192,aes256-sha256-ecp192,aes256-sha256-ecp224,aes256-sha256-ecp256,\
  46. aes256-sha256-ecp384,aes256-sha256-ecp521,aes256-aesxcbc-modp2048,aes256-aesxcbc-modp3072,aes256-aesxcbc-modp4096,aes256-aesxcbc-modp6144,\
  47. aes256-aesxcbc-modp8192,aes256-aesxcbc-ecp192,aes256-aesxcbc-ecp224,aes256-aesxcbc-ecp256,aes256-aesxcbc-ecp384,aes256-aesxcbc-ecp521"
  48.  
  49.             }
  50.         }
  51.     }
  52. }
  53.  
  54. pools {
  55. }

Quellcode

Hier kannst du den Code kopieren und ihn in deinen bevorzugten Editor einfügen. PASTEBIN_DOWNLOAD_SNIPPET_EXPLAIN

Verlinken

URL: alles markieren
https://nopaste.debianforum.de/42002

BBCode: alles markieren
[NP]42002[/NP]

LATEST_SNIPPETS