[people/ms/strongswan.git] / testing / tests / p2pnat / medsrv-psk / hosts / bob / etc / ipsec.conf

# /etc/ipsec.conf - strongSwan IPsec configuration file

config setup

conn %default
	ikelifetime=60m
	keylife=20m
	rekeymargin=3m
	keyingtries=1
	keyexchange=ikev2
	mobike=no
	dpdaction=restart
	dpddelay=60s
	left=%defaultroute
	leftfirewall=yes

conn medsrv
	leftid=av9oEPMz@medsrv.org
	leftauth=psk
	right=PH_IP_CAROL
	rightid=carol@strongswan.org
	rightauth=pubkey
	mediation=yes
	auto=start

conn peer
	leftcert=bobCert.pem
	leftid=bob@strongswan.org
	right=%any
	rightid=alice@strongswan.org
	rightsubnet=PH_IP_ALICE/32
	mediated_by=medsrv
	me_peerid=6cu1UTVw@medsrv.org
	auto=add
Commit	Line	Data
545ed7dd AS	1	# /etc/ipsec.conf - strongSwan IPsec configuration file
	2
	3	config setup
545ed7dd AS	4
	5	conn %default
	6	ikelifetime=60m
	7	keylife=20m
	8	rekeymargin=3m
	9	keyingtries=1
	10	keyexchange=ikev2
	11	mobike=no
	12	dpdaction=restart
	13	dpddelay=60s
	14	left=%defaultroute
	15	leftfirewall=yes
	16
	17	conn medsrv
	18	leftid=av9oEPMz@medsrv.org
8a5a33b5	19	leftauth=psk
545ed7dd AS	20	right=PH_IP_CAROL
545ed7dd AS	21	rightid=carol@strongswan.org
8a5a33b5	22	rightauth=pubkey
e74bc8e5	23	mediation=yes
a349dc58	24	auto=start
545ed7dd	25
dc04b7c7	26	conn peer
545ed7dd AS	27	leftcert=bobCert.pem
	28	leftid=bob@strongswan.org
	29	right=%any
	30	rightid=alice@strongswan.org
	31	rightsubnet=PH_IP_ALICE/32
e74bc8e5 TB	32	mediated_by=medsrv
e74bc8e5 TB	33	me_peerid=6cu1UTVw@medsrv.org
a349dc58	34	auto=add