Strongswan-bintec-psk: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) (→Peer) |
Thomas (Diskussion | Beiträge) |
||
| Zeile 2: | Zeile 2: | ||
*/etc/ipsec.conf | */etc/ipsec.conf | ||
<pre> | <pre> | ||
| − | + | conn b2s | |
| − | + | authby=psk | |
| − | + | keyexchange=ikev1 | |
| − | + | left=192.168.252.89 | |
| − | + | leftid=@tiazel | |
| − | + | leftsubnet=10.254.32.0/24 | |
| − | |||
| − | |||
| − | |||
| − | left=192.168.252. | ||
| − | leftid=@ | ||
| − | leftsubnet=10.254. | ||
right=192.168.252.122 | right=192.168.252.122 | ||
rightid=@bintec | rightid=@bintec | ||
rightsubnet=10.254.34.0/24 | rightsubnet=10.254.34.0/24 | ||
| + | ikelifetime=14400 | ||
| + | keylife=7200 | ||
| + | closeaction=clear | ||
| + | dpdaction=none | ||
ike=aes256-md5-modp1536 | ike=aes256-md5-modp1536 | ||
| − | + | esp=aes256-md5-modp1536 | |
| − | |||
auto=start | auto=start | ||
| + | rekeymargin=3m | ||
| + | keyingtries=3 | ||
</pre> | </pre> | ||
*/etc/ipsec.secret | */etc/ipsec.secret | ||
| − | @bintec @ | + | @bintec @tiazel : PSK "suxer" |
=Bintec= | =Bintec= | ||
Aktuelle Version vom 30. März 2017, 14:24 Uhr
Openswan
- /etc/ipsec.conf
conn b2s
authby=psk
keyexchange=ikev1
left=192.168.252.89
leftid=@tiazel
leftsubnet=10.254.32.0/24
right=192.168.252.122
rightid=@bintec
rightsubnet=10.254.34.0/24
ikelifetime=14400
keylife=7200
closeaction=clear
dpdaction=none
ike=aes256-md5-modp1536
esp=aes256-md5-modp1536
auto=start
rekeymargin=3m
keyingtries=3
- /etc/ipsec.secret
@bintec @tiazel : PSK "suxer"
Bintec
IKE and IPSEC Config
Peer
- VPN
- IPSec
- IPSec Peers
- New
- IPSec Peers
- IPSec
