Created
February 21, 2012 14:51
-
-
Save dmoulton/1876923 to your computer and use it in GitHub Desktop.
My Openswan config files
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| version 2.0 | |
| config setup | |
| nat_traversal=yes | |
| virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12 | |
| oe=off | |
| protostack=netkey | |
| conn L2TP-PSK-NAT | |
| rightsubnet=vhost:%priv | |
| also=L2TP-PSK-noNAT | |
| conn L2TP-PSK-noNAT | |
| authby=secret | |
| pfs=no | |
| auto=add | |
| keyingtries=3 | |
| rekey=no | |
| ikelifetime=8h | |
| keylife=1h | |
| type=transport | |
| left=192.168.1.4 | |
| leftprotoport=17/1701 | |
| right=%any | |
| rightprotoport=17/%any |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 192.168.1.4 : PSK "this is a modified secret" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [global] | |
| ipsec saref = yes | |
| [lns default] | |
| ip range = 10.1.2.2-10.1.2.255 | |
| local ip = 10.1.2.1 | |
| refuse chap = yes | |
| refuse pap = yes | |
| require authentication = yes | |
| ppp debug = yes | |
| pppoptfile = /etc/ppp/options.xl2tpd | |
| length bit = yes |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment