mirror of
https://github.com/trailofbits/algo.git
synced 2025-06-06 15:13:56 +02:00
conf fixed
This commit is contained in:
Evgeniy Ivanov
parent
5a482ac354
commit
188bc5e043
2 changed files with 16 additions and 11 deletions
|
|
@ -1,5 +1,5 @@
|
||||||
---
|
---
|
||||||
|
|
||||||
- include: cloud.yml
|
#- include: cloud.yml
|
||||||
- include: common.yml
|
- include: common.yml
|
||||||
- include: vpn.yml
|
- include: vpn.yml
|
||||||
|
|
@ -1,24 +1,29 @@
|
||||||
config setup
|
config setup
|
||||||
|
uniqueids = never # allow multiple connections per user
|
||||||
charondebug="ike 2, knl 2, cfg 2, net 2, esp 2, dmn 2, mgr 2"
|
charondebug="ike 2, knl 2, cfg 2, net 2, esp 2, dmn 2, mgr 2"
|
||||||
|
|
||||||
conn %default
|
conn %default
|
||||||
|
dpdaction=clear
|
||||||
|
dpddelay=35s
|
||||||
|
dpdtimeout=300s
|
||||||
|
rekey=no
|
||||||
keyexchange=ikev2
|
keyexchange=ikev2
|
||||||
ike=aes128gcm16-sha2_256-prfsha256-ecp256!
|
ike=aes128gcm16-sha2_256-prfsha256-ecp256!
|
||||||
esp=aes128gcm16-sha2_256-ecp256!
|
esp=aes128gcm16-sha2_256-ecp256!
|
||||||
dpdaction=clear
|
compress=yes
|
||||||
dpddelay=300s
|
fragmentation=yes
|
||||||
authby=pubkey
|
|
||||||
left=%any
|
left=%any
|
||||||
|
leftauth=pubkey
|
||||||
leftid={{ server_name }}
|
leftid={{ server_name }}
|
||||||
leftsubnet=0.0.0.0/0
|
|
||||||
leftcert={{ server_name }}.crt
|
leftcert={{ server_name }}.crt
|
||||||
leftsendcert=always
|
leftsendcert=always
|
||||||
|
leftsubnet=0.0.0.0/0,::/0
|
||||||
|
|
||||||
right=%any
|
right=%any
|
||||||
|
rightauth=pubkey
|
||||||
rightsourceip=10.0.0.0/24
|
rightsourceip=10.0.0.0/24
|
||||||
rightdns=8.8.8.8
|
rightdns=8.8.8.8,8.8.4.4
|
||||||
rightsendcert=never
|
|
||||||
|
|
||||||
conn IPSec-IKEv2
|
conn ikev2-pubkey
|
||||||
keyexchange=ikev2
|
|
||||||
auto=add
|
auto=add
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue