Feature #8292 » var-etc-ipsec-strongswan.conf
| 1 |
|
|---|---|
| 2 |
# Automatically generated config file - DO NOT MODIFY. Changes will be overwritten.
|
| 3 |
starter {
|
| 4 |
load_warning = no |
| 5 |
config_file = /var/etc/ipsec/ipsec.conf |
| 6 |
} |
| 7 |
|
| 8 |
charon {
|
| 9 |
# number of worker threads in charon
|
| 10 |
threads = 16 |
| 11 |
ikesa_table_size = 32 |
| 12 |
ikesa_table_segments = 4 |
| 13 |
init_limit_half_open = 1000 |
| 14 |
install_routes = no |
| 15 |
load_modular = yes |
| 16 |
ignore_acquire_ts = yes |
| 17 |
|
| 18 |
|
| 19 |
cisco_unity = no |
| 20 |
|
| 21 |
make_before_break = yes |
| 22 |
|
| 23 |
syslog {
|
| 24 |
identifier = charon |
| 25 |
# log everything under daemon since it ends up in the same place regardless with our syslog.conf
|
| 26 |
daemon {
|
| 27 |
ike_name = yes |
| 28 |
dmn = 1 |
| 29 |
mgr = 1 |
| 30 |
ike = 1 |
| 31 |
chd = 1 |
| 32 |
job = 1 |
| 33 |
cfg = 1 |
| 34 |
knl = 1 |
| 35 |
net = 1 |
| 36 |
asn = 1 |
| 37 |
enc = 1 |
| 38 |
imc = 1 |
| 39 |
imv = 1 |
| 40 |
pts = 1 |
| 41 |
tls = 1 |
| 42 |
esp = 1 |
| 43 |
lib = 1 |
| 44 |
|
| 45 |
} |
| 46 |
# disable logging under auth so logs aren't duplicated
|
| 47 |
auth {
|
| 48 |
default = -1 |
| 49 |
} |
| 50 |
} |
| 51 |
|
| 52 |
plugins {
|
| 53 |
# Load defaults
|
| 54 |
include /var/etc/ipsec/strongswan.d/charon/*.conf |
| 55 |
|
| 56 |
stroke {
|
| 57 |
secrets_file = /var/etc/ipsec/ipsec.secrets |
| 58 |
} |
| 59 |
|
| 60 |
unity {
|
| 61 |
load = no |
| 62 |
} |
| 63 |
attr {
|
| 64 |
dns = 192.168.10.1 |
| 65 |
28672 = "POLITE SALUTATION" |
| 66 |
} |
| 67 |
xauth-generic { |
| 68 |
script = /etc/inc/ipsec.auth-user.php |
| 69 |
authcfg = Local Database |
| 70 |
} |
| 71 |
|
| 72 |
} |
| 73 |
} |
| 74 |
|
