Created
May 21, 2016 06:31
-
-
Save konosukef/78ae94de721d06e0e1732ccb8e258d1f to your computer and use it in GitHub Desktop.
IKEv2 EAP-TLS
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # ipsec.conf - strongSwan IPsec configuration file | |
| config setup | |
| conn %default | |
| left=%any | |
| leftsubnet=0.0.0.0/0,::/0 | |
| leftid=vpn.example.com | |
| leftcert=vpn.example.com.crt | |
| right=%any | |
| rightsourceip=10.10.0.0/24,fd7f:14b7:2382::/64 | |
| rightdns=8.8.8.8,8.8.4.4,2001:4860:4860::8888,2001:4860:4860::8844 | |
| conn ikev2 | |
| keyexchange=ikev2 | |
| mobike=yes | |
| auto=add | |
| conn ikev2-eap-tls | |
| also="ikev2" | |
| rightauth=eap-tls | |
| rightsendcert=never | |
| eap_identity=%any |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # This file holds shared secrets or RSA private keys for authentication. | |
| # RSA private key for this host, authenticating it to any other host | |
| # which knows the public part. | |
| : RSA vpn.example.com.key |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment