mirror of
https://github.com/trailofbits/algo.git
synced 2025-09-09 05:23:16 +02:00
41 lines
1 KiB
Django/Jinja
41 lines
1 KiB
Django/Jinja
conn ikev2-{{ IP_subject_alt_name }}
|
|
fragmentation=yes
|
|
rekey=no
|
|
dpdaction=clear
|
|
keyexchange=ikev2
|
|
compress=no
|
|
dpddelay=35s
|
|
|
|
{% if Win10_Enabled is defined and Win10_Enabled == "Y" %}
|
|
ike={{ ciphers.compat.ike }}
|
|
esp={{ ciphers.compat.esp }}
|
|
{% else %}
|
|
ike={{ ciphers.defaults.ike }}
|
|
esp={{ ciphers.defaults.esp }}
|
|
{% endif %}
|
|
|
|
right={{ IP_subject_alt_name }}
|
|
rightid={{ IP_subject_alt_name }}
|
|
rightsubnet=0.0.0.0/0
|
|
rightauth=pubkey
|
|
|
|
leftsourceip=%config
|
|
leftauth=pubkey
|
|
leftcert={{ item }}.crt
|
|
leftfirewall=yes
|
|
left=%defaultroute
|
|
{% if edgemax_support is defined and edgemax_lan_subnet is defined and edgemax_support == True %}
|
|
leftsubnet={{ edgemax_lan_subnet }}
|
|
auto=route
|
|
{% else %}
|
|
auto=add
|
|
{% endif %}
|
|
|
|
|
|
{% if edgemax_support is defined and edgemax_lan_subnet is defined and edgemax_support == True %}
|
|
conn lanbypass
|
|
leftsubnet={{ edgemax_lan_subnet }}
|
|
rightsubnet={{ edgemax_lan_subnet }}
|
|
type=passthrough
|
|
auto=route
|
|
{% endif %}
|