'Hash and URL' certificates of research and sales CAs
[strongswan.git] / testing / hosts / bob / etc / ipsec.conf
1 # /etc/ipsec.conf - strongSwan IPsec configuration file
2
3 config setup
4         plutodebug=control
5         crlcheckinterval=180
6         strictcrlpolicy=no
7         nat_traversal=yes
8         charonstart=no
9
10 conn %default
11         ikelifetime=60m
12         keylife=20m
13         rekeymargin=3m
14         keyingtries=1
15
16 conn nat-t
17         left=%defaultroute
18         leftcert=bobCert.pem
19         leftid=bob@strongswan.org
20         leftfirewall=yes
21         right=%any
22         rightsubnetwithin=10.1.0.0/16
23         auto=add