Added swanctl/rw-cert scenario
[strongswan.git] / testing / tests / swanctl / rw-cert / hosts / moon / etc / swanctl / swanctl.conf
1 connections {
2
3    rw {
4       local_addrs  = 192.168.0.1
5
6       local {
7          auth = pubkey
8          certs = moonCert.pem
9          id = moon.strongswan.org
10       }
11       remote {
12          auth = pubkey
13       }
14       children {
15          net {
16             local_ts  = 10.1.0.0/16 
17
18             start_action = none
19             updown = /usr/local/libexec/ipsec/_updown iptables
20             rekey_time = 10m 
21             esp_proposals = aes128gcm128-modp2048
22          }
23       }
24
25       version = 2
26       reauth_time = 60m
27       rekey_time =  20m
28       proposals = aes128-sha256-modp2048
29    }
30 }