# /etc/strongswan.conf - strongSwan configuration file

libtls {
  suites = TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
}

pt-tls-client {
  load = curl revocation constraints pem openssl nonce tnc-tnccs tnc-imc tnccs-20
}