LinuxVPNtoPfsense-Linux-Firewall: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
(Die Seite wurde neu angelegt: „=Interface= <pre> auto lo iface lo inet loopback auto ens160 iface ens160 inet static address 10.66.252.40 netmask 255.255.255.0 gateway 10.66.252.1 auto…“) |
|||
| Zeile 1: | Zeile 1: | ||
=Interface= | =Interface= | ||
| + | *cat /etc/network/interfaces | ||
<pre> | <pre> | ||
auto lo | auto lo | ||
| Zeile 20: | Zeile 21: | ||
netmask 255.255.255.0 | netmask 255.255.255.0 | ||
</pre> | </pre> | ||
| + | =VPN= | ||
| + | <pre> | ||
| + | * cat /etc/ipsec.conf | ||
| + | conn linux2pfsense | ||
| + | authby=secret | ||
| + | keyexchange=ikev1 | ||
| + | left=10.66.252.40 | ||
| + | leftsubnet=10.66.254.0/24 | ||
| + | right=10.66.252.10 | ||
| + | rightsubnet=10.66.253.0/24 | ||
| + | ike=aes256-sha512-modp4096 | ||
| + | esp=aes256-sha512-modp4096 | ||
| + | ikelifetime=28800 | ||
| + | keylife=3600 | ||
| + | auto=start | ||
| + | </pre> | ||
| + | * cat /etc/ipsec.conf | ||
| + | 10.66.252.40 10.66.252.10 : PSK "sysadm" | ||
Version vom 8. Februar 2022, 07:56 Uhr
Interface
- cat /etc/network/interfaces
auto lo iface lo inet loopback auto ens160 iface ens160 inet static address 10.66.252.40 netmask 255.255.255.0 gateway 10.66.252.1 auto ens192 iface ens192 inet static address 10.66.254.1 netmask 255.255.255.0 auto ens224 iface ens224 inet static address 10.66.248.1 netmask 255.255.255.0
VPN
* cat /etc/ipsec.conf
conn linux2pfsense
authby=secret
keyexchange=ikev1
left=10.66.252.40
leftsubnet=10.66.254.0/24
right=10.66.252.10
rightsubnet=10.66.253.0/24
ike=aes256-sha512-modp4096
esp=aes256-sha512-modp4096
ikelifetime=28800
keylife=3600
auto=start
- cat /etc/ipsec.conf
10.66.252.40 10.66.252.10 : PSK "sysadm"