1 # /etc/strongswan.conf - strongSwan configuration file
4 load = random nonce aes sha1 sha2 md5 pem pkcs1 gmp hmac x509 revocation curl vici kernel-netlink socket-default eap-identity eap-ttls eap-md5 eap-tnc tnc-tnccs tnccs-20 tnc-imv updown
6 multiple_authentication = no
17 phase2_piggyback = yes
24 suites = TLS_DHE_RSA_WITH_AES_128_CBC_SHA256
33 closed_port_policy = yes