Strongswan zu strongswan: Unterschied zwischen den Versionen
Zur Navigation springen
Zur Suche springen
Thomas (Diskussion | Beiträge) |
Thomas (Diskussion | Beiträge) |
||
| Zeile 1: | Zeile 1: | ||
=net-net-ikev2-x509= | =net-net-ikev2-x509= | ||
==huey== | ==huey== | ||
| + | ;certs | ||
| + | /etc/ipsec.d/certs/huey.xinux.org.crt | ||
| + | /etc/ipsec.d/crls/xinux-ca.crl | ||
| + | /etc/ipsec.d/cacerts/xinux-ca.crt | ||
| + | /etc/ipsec.d/private/huey.xinux.org.key | ||
;/etc/ipsec.conf | ;/etc/ipsec.conf | ||
conn net-net | conn net-net | ||
| Zeile 14: | Zeile 19: | ||
==franz== | ==franz== | ||
| + | ;certs | ||
| + | /etc/ipsec.d/certs/franz.xinux.org.crt | ||
| + | /etc/ipsec.d/cacerts/xinux-ca.crt | ||
| + | /etc/ipsec.d/private/franz.xinux.org.key | ||
| + | /etc/ipsec.d/crls/xinux-ca.crl | ||
;/etc/ipsec.conf | ;/etc/ipsec.conf | ||
conn net-net | conn net-net | ||
Version vom 15. Oktober 2014, 14:20 Uhr
net-net-ikev2-x509
huey
- certs
/etc/ipsec.d/certs/huey.xinux.org.crt /etc/ipsec.d/crls/xinux-ca.crl /etc/ipsec.d/cacerts/xinux-ca.crt /etc/ipsec.d/private/huey.xinux.org.key
- /etc/ipsec.conf
conn net-net
left=%defaultroute
leftsubnet=10.18.44.0/24
leftcert=huey.xinux.org.crt
right=192.168.242.249
rightsubnet=10.4.3.0/16
rightid="C=de, ST=rlp, L=zweibruecken, O=xinux, OU=edv, CN=franz.xinux.org, E=technik@xinux.de"
auto=start
- /etc/ipsec.secrets
: RSA franz.xinux.org.key ""
franz
- certs
/etc/ipsec.d/certs/franz.xinux.org.crt /etc/ipsec.d/cacerts/xinux-ca.crt /etc/ipsec.d/private/franz.xinux.org.key /etc/ipsec.d/crls/xinux-ca.crl
- /etc/ipsec.conf
conn net-net
left=%defaultroute
leftsubnet=10.4.3.0/16
leftcert=franz.xinux.org.crt
right=192.168.244.151
rightsubnet=10.18.44.0/24
rightid="C=de, ST=rlp, L=zweibruecken, O=xinux, OU=edv, CN=huey.xinux.org, E=technik@xinux.de"
auto=start
- /etc/ipsec.secrets
: RSA franz.xinux.org.key ""