refreshened and fortified strongSwan Root CA certificate
[strongswan.git] / testing / hosts / dave / etc / ipsec.conf
1 # /etc/ipsec.conf - strongSwan IPsec configuration file
2
3 config setup
4         plutodebug=control
5         crlcheckinterval=180
6         strictcrlpolicy=no
7         charonstart=no
8
9 conn %default
10         ikelifetime=60m
11         keylife=20m
12         rekeymargin=3m
13         keyingtries=1
14
15 conn home
16         left=PH_IP_DAVE
17         leftcert=daveCert.pem
18         leftid=dave@strongswan.org
19         leftfirewall=yes
20         right=PH_IP_MOON
21         rightsubnet=10.1.0.0/16
22         rightid=@moon.strongswan.org
23         auto=add