Project

General

Profile

Feature #8292 » var-etc-ipsec-strongswan.conf

var/etc/ipsec/strongswan.conf - Anonymous, 07/06/2018 11:06 AM

 
1

    
2
# Automatically generated config file - DO NOT MODIFY. Changes will be overwritten.
3
starter {
4
	load_warning = no
5
	config_file = /var/etc/ipsec/ipsec.conf
6
}
7

    
8
charon {
9
# number of worker threads in charon
10
	threads = 16
11
	ikesa_table_size = 32
12
	ikesa_table_segments = 4
13
	init_limit_half_open = 1000
14
	install_routes = no
15
	load_modular = yes
16
	ignore_acquire_ts = yes
17
	
18
	
19
	cisco_unity = no
20
	
21
	make_before_break = yes
22

    
23
	syslog {
24
		identifier = charon
25
		# log everything under daemon since it ends up in the same place regardless with our syslog.conf
26
		daemon {
27
			ike_name = yes
28
			dmn = 1
29
			mgr = 1
30
			ike = 1
31
			chd = 1
32
			job = 1
33
			cfg = 1
34
			knl = 1
35
			net = 1
36
			asn = 1
37
			enc = 1
38
			imc = 1
39
			imv = 1
40
			pts = 1
41
			tls = 1
42
			esp = 1
43
			lib = 1
44

    
45
		}
46
		# disable logging under auth so logs aren't duplicated
47
		auth {
48
			default = -1
49
		}
50
	}
51

    
52
	plugins {
53
		# Load defaults
54
		include /var/etc/ipsec/strongswan.d/charon/*.conf
55

    
56
		stroke {
57
			secrets_file = /var/etc/ipsec/ipsec.secrets
58
		}
59

    
60
		unity {
61
			load = no
62
		}
63
		attr {
64
			dns = 192.168.10.1
65
			28672 = "POLITE SALUTATION"
66
		}
67
		xauth-generic {
68
			script = /etc/inc/ipsec.auth-user.php
69
			authcfg = Local Database
70
		}
71

    
72
	}
73
}
74

    
(1-1/2)