Added openssl-ikev2/rw-cpa scenario
[strongswan.git] / testing / tests / openssl-ikev2 / rw-cpa / hosts / dave / etc / ipsec.conf
1 # /etc/ipsec.conf - strongSwan IPsec configuration file
2
3 config setup
4
5 conn %default
6         ikelifetime=60m
7         keylife=20m
8         rekeymargin=3m
9         keyingtries=1
10         keyexchange=ikev2
11         ike=aes128gcm128-prfsha256-ecp256!
12         esp=aes128gcm128-ecp256!
13
14 conn peer
15         left=PH_IP_DAVE
16         leftcert=daveCert.pem
17         leftid=dave@strongswan.org
18         leftfirewall=yes
19         right=PH_IP_CAROL
20         rightid=carol@strongswan.org
21         auto=add