In mem_pool, check for an existing ID entry before creating a new one
[strongswan.git] / testing / rw-eap-dynamic / hosts / dave / etc / ipsec.conf
1 # /etc/ipsec.conf - strongSwan IPsec configuration file
2
3 config setup
4
5 conn %default
6         ikelifetime=60m
7         keylife=20m
8         rekeymargin=3m
9         keyingtries=1
10         keyexchange=ikev2
11
12 conn home
13         left=PH_IP_DAVE
14         leftcert=daveCert.pem
15         leftid=dave@strongswan.org
16         leftauth=eap-tls
17         leftfirewall=yes
18         right=PH_IP_MOON
19         rightid=@moon.strongswan.org
20         rightsubnet=10.1.0.0/16
21         rightauth=pubkey
22         auto=add