ipsec: Remove stuff that does not belong to certain connection types

author Michael Tremer <michael.tremer@ipfire.org>

Mon, 7 Aug 2017 16:29:24 +0000 (16:29 +0000)

committer Michael Tremer <michael.tremer@ipfire.org>

Mon, 7 Aug 2017 16:30:11 +0000 (16:30 +0000)
author Michael Tremer <michael.tremer@ipfire.org>
Mon, 7 Aug 2017 16:29:24 +0000 (16:29 +0000)
committer Michael Tremer <michael.tremer@ipfire.org>
Mon, 7 Aug 2017 16:30:11 +0000 (16:30 +0000)
diff --git a/src/functions/functions.ipsec b/src/functions/functions.ipsec

index 521380943b75b0d8d7efc8cd85cc8447dee59cb9..72838363ef69549cdc8d847983590c541b0906f3 100644 (file)
--- a/src/functions/functions.ipsec
+++ b/src/functions/functions.ipsec
@@ -1326,12 +1326,18 @@ _ipsec_connection_to_strongswan_connection() {
         print_indent 2 "fragmentation = yes"
         print
  
-       # Pools
-       if isset POOLS; then
-               print_indent 2 "# Pools"
-               print_indent 2 "pools = $(list_join POOLS ", ")"
-               print
-       fi
+
+       # Host-to-Net specific settings
+       case "${TYPE}" in
+               host-to-net)
+                       # Pools
+                       if isset POOLS; then
+                               print_indent 2 "# Pools"
+                               print_indent 2 "pools = $(list_join POOLS ", ")"
+                               print
+                       fi
+                       ;;
+       esac
  
         # Local
         print_indent 2 "local {"
@@ -1459,23 +1465,28 @@ _ipsec_connection_to_strongswan_connection() {
                 print
         fi
  
-       # Start Action
-       print_indent 4 "# Start Action"
-       case "${START_ACTION}" in
-               on-demand)
-                       print_indent 4 "start_action = trap"
-                       print_indent 4 "close_action = trap"
-                       ;;
-               wait)
-                       print_indent 4 "start_action = none"
-                       print_indent 4 "close_action = none"
-                       ;;
-               always-on|*)
-                       print_indent 4 "start_action = start"
-                       print_indent 4 "close_action = start"
+       # Net-to-Net specific settings
+       case "${TYPE}" in
+               net-to-net)
+                       # Start Action
+                       print_indent 4 "# Start Action"
+                       case "${START_ACTION}" in
+                               on-demand)
+                                       print_indent 4 "start_action = trap"
+                                       print_indent 4 "close_action = trap"
+                                       ;;
+                               wait)
+                                       print_indent 4 "start_action = none"
+                                       print_indent 4 "close_action = none"
+                                       ;;
+                               always-on|*)
+                                       print_indent 4 "start_action = start"
+                                       print_indent 4 "close_action = start"
+                                       ;;
+                       esac
+                       print
                         ;;
         esac
-       print
  
         print_indent 3 "}"
         print_indent 2 "}"
author	Michael Tremer <michael.tremer@ipfire.org>
	Mon, 7 Aug 2017 16:29:24 +0000 (16:29 +0000)
committer	Michael Tremer <michael.tremer@ipfire.org>
	Mon, 7 Aug 2017 16:30:11 +0000 (16:30 +0000)