wallenstein/algo
1
0
Fork 0
mirror of https://github.com/trailofbits/algo.git synced 2025-04-19 15:47:11 +02:00
Code Issues Projects Releases Wiki Activity

conf fixed

Browse source
This commit is contained in:
Evgeniy Ivanov 2016-07-18 19:15:34 +03:00
parent 5a482ac354
commit 188bc5e043
2 changed files with 16 additions and 11 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
deploy.yml
View file

@ -1,5 +1,5 @@
---
- include: cloud.yml
#- include: cloud.yml
- include: common.yml
- include: vpn.yml

25
templates/ipsec.conf.j2
View file

@ -1,24 +1,29 @@
config setup
uniqueids = never # allow multiple connections per user
charondebug="ike 2, knl 2, cfg 2, net 2, esp 2, dmn 2, mgr 2"
conn %default
dpdaction=clear
dpddelay=35s
dpdtimeout=300s
rekey=no
keyexchange=ikev2
ike=aes128gcm16-sha2_256-prfsha256-ecp256!
esp=aes128gcm16-sha2_256-ecp256!
dpdaction=clear
dpddelay=300s
authby=pubkey
compress=yes
fragmentation=yes
left=%any
leftauth=pubkey
leftid={{ server_name }}
leftsubnet=0.0.0.0/0
leftcert={{ server_name }}.crt
leftsendcert=always
leftsubnet=0.0.0.0/0,::/0
right=%any
rightauth=pubkey
rightsourceip=10.0.0.0/24
rightdns=8.8.8.8
rightsendcert=never
conn IPSec-IKEv2
keyexchange=ikev2
auto=add
rightdns=8.8.8.8,8.8.4.4
conn ikev2-pubkey
auto=add