testing/tests/multi-level-ca-ldap/hosts/carol/etc/ipsec.conf

   1 # /etc/ipsec.conf - strongSwan IPsec configuration file
   2
   3 version 2.0     # conforms to second version of ipsec.conf specification
   4
   5 config setup
   6         plutodebug=control
   7         crlcheckinterval=180
   8         strictcrlpolicy=no
   9
  10 ca strongswan
  11         cacert=strongswanCert.pem
  12         crluri="ldap://ldap.strongswan.org/cn=strongSwan Root CA, o=Linux strongSwan, c=CH?certificateRevocationList"
  13         auto=add
  14
  15 conn %default
  16         ikelifetime=60m
  17         keylife=20m
  18         rekeymargin=3m
  19         keyingtries=1
  20         left=PH_IP_CAROL
  21         leftnexthop=%direct
  22         leftcert=carolCert.pem
  23         right=PH_IP_MOON
  24         rightid=@moon.strongswan.org
  25
  26 conn alice
  27         rightsubnet=PH_IP_ALICE/32
  28         auto=add
  29
  30 conn venus
  31         rightsubnet=PH_IP_VENUS/32
  32         auto=add