Project

General

Profile

Download (36.3 KB)

Bug #13014 » swanctl.conf

David Vazquez, 11/18/2022 01:38 PM

 
1 
# This file is automatically generated. Do not edit
2 
connections {
3 
	bypass {
4 
		remote_addrs = 127.0.0.1
5 
		children {
6 
			bypasslan {
7 
				local_ts = [REDACTED]/24
8 
				remote_ts = [REDACTED]/24
9 
				mode = pass
10 
				start_action = trap
11 
			}
12 
		}
13 
	}
14 
	con43 {
15 
		# P1 (ikeid 43): [REDACTED]
16 
		fragmentation = yes
17 
		unique = replace
18 
		version = 1
19 
		aggressive = yes
20 
		proposals = aes256-sha256-modp2048
21 
		dpd_delay = 10s
22 
		dpd_timeout = 60s
23 
		reauth_time = 25920s
24 
		over_time = 2880s
25 
		rand_time = 2880s
26 
		encap = no
27 
		mobike = no
28 
		local_addrs = [REDACTED]
29 
		remote_addrs = [REDACTED]
30 
		local {
31 
			id = fqdn:[REDACTED]
32 
			auth = psk
33 
		}
34 
		remote {
35 
			id = [REDACTED]
36 
			auth = psk
37 
		}
38 
		children {
39 
			con43_85 {
40 
				# P2 (reqid 85): [REDACTED]
41 
				mode = tunnel
42 
				policies = yes
43 
				life_time = 28800s
44 
				rekey_time = 25920s
45 
				rand_time = 2880s
46 
				start_action = start
47 
				local_ts = [REDACTED]/24
48 
				remote_ts = [REDACTED]/29
49 
				esp_proposals = aes256-sha256-ecp384
50 
				close_action = start
51 
				dpd_action = restart
52 
			}
53 
			con43_86 {
54 
				# P2 (reqid 86): [REDACTED]
55 
				mode = tunnel
56 
				policies = yes
57 
				life_time = 28800s
58 
				rekey_time = 25920s
59 
				rand_time = 2880s
60 
				start_action = start
61 
				local_ts = [REDACTED]/24
62 
				remote_ts = [REDACTED]/25
63 
				esp_proposals = aes256-sha256-ecp384
64 
				close_action = start
65 
				dpd_action = restart
66 
			}
67 
			con43_87 {
68 
				# P2 (reqid 87): [REDACTED]
69 
				mode = tunnel
70 
				policies = yes
71 
				life_time = 28800s
72 
				rekey_time = 25920s
73 
				rand_time = 2880s
74 
				start_action = start
75 
				local_ts = [REDACTED]/24
76 
				remote_ts = [REDACTED]/24
77 
				esp_proposals = aes256-sha256-ecp384
78 
				close_action = start
79 
				dpd_action = restart
80 
			}
81 
			con43_88 {
82 
				# P2 (reqid 88): [REDACTED]
83 
				mode = tunnel
84 
				policies = yes
85 
				life_time = 28800s
86 
				rekey_time = 25920s
87 
				rand_time = 2880s
88 
				start_action = start
89 
				local_ts = [REDACTED]/24
90 
				remote_ts = [REDACTED]/24
91 
				esp_proposals = aes256-sha256-ecp384
92 
				close_action = start
93 
				dpd_action = restart
94 
			}
95 
			con43_89 {
96 
				# P2 (reqid 89): [REDACTED]
97 
				mode = tunnel
98 
				policies = yes
99 
				life_time = 28800s
100 
				rekey_time = 25920s
101 
				rand_time = 2880s
102 
				start_action = start
103 
				local_ts = [REDACTED]/24
104 
				remote_ts = [REDACTED]/24
105 
				esp_proposals = aes256-sha256-ecp384
106 
				close_action = start
107 
				dpd_action = restart
108 
			}
109 
			con43_90 {
110 
				# P2 (reqid 90): [REDACTED]
111 
				mode = tunnel
112 
				policies = yes
113 
				life_time = 28800s
114 
				rekey_time = 25920s
115 
				rand_time = 2880s
116 
				start_action = start
117 
				local_ts = [REDACTED]/24
118 
				remote_ts = [REDACTED]/24
119 
				esp_proposals = aes256-sha256-ecp384
120 
				close_action = start
121 
				dpd_action = restart
122 
			}
123 
			con43_91 {
124 
				# P2 (reqid 91): [REDACTED]
125 
				mode = tunnel
126 
				policies = yes
127 
				life_time = 28800s
128 
				rekey_time = 25920s
129 
				rand_time = 2880s
130 
				start_action = start
131 
				local_ts = [REDACTED]/24
132 
				remote_ts = [REDACTED]/24
133 
				esp_proposals = aes256-sha256-ecp384
134 
				close_action = start
135 
				dpd_action = restart
136 
			}
137 
			con43_92 {
138 
				# P2 (reqid 92): [REDACTED]
139 
				mode = tunnel
140 
				policies = yes
141 
				life_time = 28800s
142 
				rekey_time = 25920s
143 
				rand_time = 2880s
144 
				start_action = start
145 
				local_ts = [REDACTED]/24
146 
				remote_ts = [REDACTED]/24
147 
				esp_proposals = aes256-sha256-ecp384
148 
				close_action = start
149 
				dpd_action = restart
150 
			}
151 
			con43_93 {
152 
				# P2 (reqid 93): [REDACTED]
153 
				mode = tunnel
154 
				policies = yes
155 
				life_time = 28800s
156 
				rekey_time = 25920s
157 
				rand_time = 2880s
158 
				start_action = start
159 
				local_ts = [REDACTED]/24
160 
				remote_ts = [REDACTED]/24
161 
				esp_proposals = aes256-sha256-ecp384
162 
				close_action = start
163 
				dpd_action = restart
164 
			}
165 
			con43_94 {
166 
				# P2 (reqid 94): [REDACTED]
167 
				mode = tunnel
168 
				policies = yes
169 
				life_time = 28800s
170 
				rekey_time = 25920s
171 
				rand_time = 2880s
172 
				start_action = start
173 
				local_ts = [REDACTED]/24
174 
				remote_ts = [REDACTED]/24
175 
				esp_proposals = aes256-sha256-ecp384
176 
				close_action = start
177 
				dpd_action = restart
178 
			}
179 
			con43_95 {
180 
				# P2 (reqid 95): [REDACTED]
181 
				mode = tunnel
182 
				policies = yes
183 
				life_time = 28800s
184 
				rekey_time = 25920s
185 
				rand_time = 2880s
186 
				start_action = start
187 
				local_ts = [REDACTED]/24
188 
				remote_ts = [REDACTED]/24
189 
				esp_proposals = aes256-sha256-ecp384
190 
				close_action = start
191 
				dpd_action = restart
192 
			}
193 
			con43_96 {
194 
				# P2 (reqid 96): [REDACTED]
195 
				mode = tunnel
196 
				policies = yes
197 
				life_time = 28800s
198 
				rekey_time = 25920s
199 
				rand_time = 2880s
200 
				start_action = start
201 
				local_ts = [REDACTED]/24
202 
				remote_ts = [REDACTED]/24
203 
				esp_proposals = aes256-sha256-ecp384
204 
				close_action = start
205 
				dpd_action = restart
206 
			}
207 
			con43_97 {
208 
				# P2 (reqid 97): [REDACTED]
209 
				mode = tunnel
210 
				policies = yes
211 
				life_time = 28800s
212 
				rekey_time = 25920s
213 
				rand_time = 2880s
214 
				start_action = start
215 
				local_ts = [REDACTED]/24
216 
				remote_ts = [REDACTED]/24
217 
				esp_proposals = aes256-sha256-ecp384
218 
				close_action = start
219 
				dpd_action = restart
220 
			}
221 
			con43_98 {
222 
				# P2 (reqid 98): [REDACTED]
223 
				mode = tunnel
224 
				policies = yes
225 
				life_time = 28800s
226 
				rekey_time = 25920s
227 
				rand_time = 2880s
228 
				start_action = start
229 
				local_ts = [REDACTED]/24
230 
				remote_ts = [REDACTED]/24
231 
				esp_proposals = aes256-sha256-ecp384
232 
				close_action = start
233 
				dpd_action = restart
234 
			}
235 
			con43_99 {
236 
				# P2 (reqid 99): [REDACTED]
237 
				mode = tunnel
238 
				policies = yes
239 
				life_time = 28800s
240 
				rekey_time = 25920s
241 
				rand_time = 2880s
242 
				start_action = start
243 
				local_ts = [REDACTED]/24
244 
				remote_ts = [REDACTED]/24
245 
				esp_proposals = aes256-sha256-ecp384
246 
				close_action = start
247 
				dpd_action = restart
248 
			}
249 
			con43_100 {
250 
				# P2 (reqid 100): [REDACTED]
251 
				mode = tunnel
252 
				policies = yes
253 
				life_time = 28800s
254 
				rekey_time = 25920s
255 
				rand_time = 2880s
256 
				start_action = start
257 
				local_ts = [REDACTED]/24
258 
				remote_ts = [REDACTED]/24
259 
				esp_proposals = aes256-sha256-ecp384
260 
				close_action = start
261 
				dpd_action = restart
262 
			}
263 
			con43_101 {
264 
				# P2 (reqid 101): [REDACTED]
265 
				mode = tunnel
266 
				policies = yes
267 
				life_time = 28800s
268 
				rekey_time = 25920s
269 
				rand_time = 2880s
270 
				start_action = start
271 
				local_ts = [REDACTED]/24
272 
				remote_ts = [REDACTED]/24
273 
				esp_proposals = aes256-sha256-ecp384
274 
				close_action = start
275 
				dpd_action = restart
276 
			}
277 
			con43_102 {
278 
				# P2 (reqid 102): [REDACTED]
279 
				mode = tunnel
280 
				policies = yes
281 
				life_time = 28800s
282 
				rekey_time = 25920s
283 
				rand_time = 2880s
284 
				start_action = start
285 
				local_ts = [REDACTED]/24
286 
				remote_ts = [REDACTED]/21
287 
				esp_proposals = aes256-sha256-ecp384
288 
				close_action = start
289 
				dpd_action = restart
290 
			}
291 
		}
292 
	}
293 
	con4 {
294 
		# P1 (ikeid 4): [REDACTED]
295 
		fragmentation = yes
296 
		unique = replace
297 
		version = 2
298 
		proposals = aes256-sha256-modp2048
299 
		dpd_delay = 10s
300 
		rekey_time = 25920s
301 
		reauth_time = 0s
302 
		over_time = 2880s
303 
		rand_time = 2880s
304 
		encap = no
305 
		mobike = no
306 
		local_addrs = [REDACTED]
307 
		remote_addrs = [REDACTED]
308 
		local {
309 
			id = fqdn:[REDACTED]
310 
			auth = psk
311 
		}
312 
		remote {
313 
			id = [REDACTED]
314 
			auth = psk
315 
		}
316 
		children {
317 
			con4 {
318 
				# P2 (reqid 4): [REDACTED]
319 
				mode = tunnel
320 
				policies = yes
321 
				life_time = 28800s
322 
				rekey_time = 25920s
323 
				rand_time = 2880s
324 
				start_action = trap
325 
				remote_ts = [REDACTED]/24
326 
				local_ts = [REDACTED]/24
327 
				esp_proposals = aes256-sha256-modp2048
328 
				dpd_action = trap
329 
			}
330 
		}
331 
	}
332 
	con5 {
333 
		# P1 (ikeid 5): [REDACTED]
334 
		fragmentation = yes
335 
		unique = replace
336 
		version = 2
337 
		proposals = aes256-sha256-modp2048
338 
		dpd_delay = 10s
339 
		rekey_time = 25920s
340 
		reauth_time = 0s
341 
		over_time = 2880s
342 
		rand_time = 2880s
343 
		encap = no
344 
		mobike = no
345 
		local_addrs = [REDACTED]
346 
		remote_addrs = [REDACTED]
347 
		local {
348 
			id = fqdn:[REDACTED]
349 
			auth = psk
350 
		}
351 
		remote {
352 
			id = [REDACTED]
353 
			auth = psk
354 
		}
355 
		children {
356 
			con5 {
357 
				# P2 (reqid 5): [REDACTED]
358 
				mode = tunnel
359 
				policies = yes
360 
				life_time = 28800s
361 
				rekey_time = 25920s
362 
				rand_time = 2880s
363 
				start_action = trap
364 
				remote_ts = [REDACTED]/24
365 
				local_ts = [REDACTED]/24
366 
				esp_proposals = aes256-sha256-modp2048
367 
				dpd_action = trap
368 
			}
369 
		}
370 
	}
371 
	con3 {
372 
		# P1 (ikeid 3): [REDACTED]
373 
		fragmentation = yes
374 
		unique = replace
375 
		version = 2
376 
		proposals = aes256-sha256-modp2048
377 
		dpd_delay = 10s
378 
		rekey_time = 25920s
379 
		reauth_time = 0s
380 
		over_time = 2880s
381 
		rand_time = 2880s
382 
		encap = no
383 
		mobike = no
384 
		local_addrs = [REDACTED]
385 
		remote_addrs = [REDACTED]
386 
		local {
387 
			id = fqdn:[REDACTED]
388 
			auth = psk
389 
		}
390 
		remote {
391 
			id = [REDACTED]
392 
			auth = psk
393 
		}
394 
		children {
395 
			con3 {
396 
				# P2 (reqid 3): [REDACTED]
397 
				mode = tunnel
398 
				policies = yes
399 
				life_time = 3600s
400 
				rekey_time = 3240s
401 
				rand_time = 360s
402 
				start_action = trap
403 
				remote_ts = [REDACTED]/24
404 
				local_ts = [REDACTED]/24
405 
				esp_proposals = aes256-sha256
406 
				dpd_action = trap
407 
			}
408 
		}
409 
	}
410 
	con6 {
411 
		# P1 (ikeid 6): [REDACTED]
412 
		fragmentation = yes
413 
		unique = replace
414 
		version = 2
415 
		proposals = aes256-sha256-modp2048
416 
		dpd_delay = 10s
417 
		rekey_time = 25920s
418 
		reauth_time = 0s
419 
		over_time = 2880s
420 
		rand_time = 2880s
421 
		encap = no
422 
		mobike = no
423 
		local_addrs = [REDACTED]
424 
		remote_addrs = [REDACTED]
425 
		local {
426 
			id = fqdn:[REDACTED]
427 
			auth = psk
428 
		}
429 
		remote {
430 
			id = [REDACTED]
431 
			auth = psk
432 
		}
433 
		children {
434 
			con6_6 {
435 
				# P2 (reqid 6): [REDACTED]
436 
				mode = tunnel
437 
				policies = yes
438 
				life_time = 28800s
439 
				rekey_time = 25920s
440 
				rand_time = 2880s
441 
				start_action = start
442 
				local_ts = [REDACTED]/24
443 
				remote_ts = [REDACTED]/23
444 
				esp_proposals = aes256-sha256-modp2048
445 
				close_action = start
446 
				dpd_action = restart
447 
			}
448 
			con6_7 {
449 
				# P2 (reqid 7): [REDACTED]
450 
				mode = tunnel
451 
				policies = yes
452 
				life_time = 28800s
453 
				rekey_time = 25920s
454 
				rand_time = 2880s
455 
				start_action = start
456 
				local_ts = [REDACTED]/24
457 
				remote_ts = [REDACTED]/24
458 
				esp_proposals = aes256-sha256-modp2048
459 
				close_action = start
460 
				dpd_action = restart
461 
			}
462 
		}
463 
	}
464 
	con7 {
465 
		# P1 (ikeid 7): [REDACTED]
466 
		fragmentation = yes
467 
		unique = replace
468 
		version = 2
469 
		proposals = aes256-sha256-modp2048
470 
		dpd_delay = 10s
471 
		rekey_time = 25920s
472 
		reauth_time = 0s
473 
		over_time = 2880s
474 
		rand_time = 2880s
475 
		encap = no
476 
		mobike = no
477 
		local_addrs = [REDACTED]
478 
		remote_addrs = [REDACTED]
479 
		local {
480 
			id = fqdn:[REDACTED]
481 
			auth = psk
482 
		}
483 
		remote {
484 
			id = [REDACTED]
485 
			auth = psk
486 
		}
487 
		children {
488 
			con7_8 {
489 
				# P2 (reqid 8): [REDACTED]
490 
				mode = tunnel
491 
				policies = yes
492 
				life_time = 28800s
493 
				rekey_time = 25920s
494 
				rand_time = 2880s
495 
				start_action = trap
496 
				local_ts = [REDACTED]/24
497 
				remote_ts = [REDACTED]/23
498 
				esp_proposals = aes256-sha256-modp2048
499 
				dpd_action = trap
500 
			}
501 
			con7_9 {
502 
				# P2 (reqid 9): [REDACTED]
503 
				mode = tunnel
504 
				policies = yes
505 
				life_time = 28800s
506 
				rekey_time = 25920s
507 
				rand_time = 2880s
508 
				start_action = trap
509 
				local_ts = [REDACTED]/24
510 
				remote_ts = [REDACTED]/24
511 
				esp_proposals = aes256-sha256-modp2048
512 
				dpd_action = trap
513 
			}
514 
		}
515 
	}
516 
	con8 {
517 
		# P1 (ikeid 8): [REDACTED]
518 
		fragmentation = yes
519 
		unique = replace
520 
		version = 2
521 
		proposals = aes256-sha256-modp2048
522 
		dpd_delay = 10s
523 
		rekey_time = 25920s
524 
		reauth_time = 0s
525 
		over_time = 2880s
526 
		rand_time = 2880s
527 
		encap = no
528 
		mobike = no
529 
		local_addrs = [REDACTED]
530 
		remote_addrs = [REDACTED]
531 
		local {
532 
			id = fqdn:[REDACTED]
533 
			auth = psk
534 
		}
535 
		remote {
536 
			id = [REDACTED]
537 
			auth = psk
538 
		}
539 
		children {
540 
			con8 {
541 
				# P2 (reqid 10): [REDACTED]
542 
				mode = tunnel
543 
				policies = yes
544 
				life_time = 28800s
545 
				rekey_time = 25920s
546 
				rand_time = 2880s
547 
				start_action = trap
548 
				remote_ts = [REDACTED]/24
549 
				local_ts = [REDACTED]/24
550 
				esp_proposals = aes256-sha256-modp2048
551 
				dpd_action = trap
552 
			}
553 
		}
554 
	}
555 
	con9 {
556 
		# P1 (ikeid 9): [REDACTED]
557 
		fragmentation = yes
558 
		unique = replace
559 
		version = 2
560 
		proposals = aes256-sha256-modp2048
561 
		dpd_delay = 10s
562 
		rekey_time = 25920s
563 
		reauth_time = 0s
564 
		over_time = 2880s
565 
		rand_time = 2880s
566 
		encap = no
567 
		mobike = no
568 
		local_addrs = [REDACTED]
569 
		remote_addrs = [REDACTED]
570 
		local {
571 
			id = fqdn:[REDACTED]
572 
			auth = psk
573 
		}
574 
		remote {
575 
			id = [REDACTED]
576 
			auth = psk
577 
		}
578 
		children {
579 
			con9 {
580 
				# P2 (reqid 11): [REDACTED]
581 
				mode = tunnel
582 
				policies = yes
583 
				life_time = 28800s
584 
				rekey_time = 25920s
585 
				rand_time = 2880s
586 
				start_action = trap
587 
				remote_ts = [REDACTED]/24
588 
				local_ts = [REDACTED]/24
589 
				esp_proposals = aes256-sha256-modp2048
590 
				dpd_action = trap
591 
			}
592 
		}
593 
	}
594 
	con10 {
595 
		# P1 (ikeid 10): [REDACTED]
596 
		fragmentation = yes
597 
		unique = replace
598 
		version = 2
599 
		proposals = aes256-sha256-ecp384
600 
		dpd_delay = 10s
601 
		rekey_time = 25920s
602 
		reauth_time = 0s
603 
		over_time = 2880s
604 
		rand_time = 2880s
605 
		encap = no
606 
		mobike = no
607 
		local_addrs = [REDACTED]
608 
		remote_addrs = [REDACTED]
609 
		local {
610 
			id = fqdn:[REDACTED]
611 
			auth = psk
612 
		}
613 
		remote {
614 
			id = [REDACTED]
615 
			auth = psk
616 
		}
617 
		children {
618 
			con10 {
619 
				# P2 (reqid 12): [REDACTED]
620 
				mode = tunnel
621 
				policies = yes
622 
				life_time = 3600s
623 
				rekey_time = 3240s
624 
				rand_time = 360s
625 
				start_action = trap
626 
				remote_ts = [REDACTED]/24
627 
				local_ts = [REDACTED]/24
628 
				esp_proposals = aes256-sha256-modp2048
629 
				dpd_action = trap
630 
			}
631 
		}
632 
	}
633 
	con22 {
634 
		# P1 (ikeid 22): [REDACTED]
635 
		fragmentation = yes
636 
		unique = replace
637 
		version = 2
638 
		proposals = aes256-sha256-ecp384
639 
		dpd_delay = 10s
640 
		rekey_time = 25920s
641 
		reauth_time = 0s
642 
		over_time = 2880s
643 
		rand_time = 2880s
644 
		encap = no
645 
		mobike = no
646 
		local_addrs = [REDACTED]
647 
		remote_addrs = [REDACTED]
648 
		local {
649 
			id = fqdn:[REDACTED]
650 
			auth = psk
651 
		}
652 
		remote {
653 
			id = [REDACTED]
654 
			auth = psk
655 
		}
656 
		children {
657 
			con22_43 {
658 
				# P2 (reqid 43): [REDACTED]1
659 
				mode = tunnel
660 
				policies = yes
661 
				life_time = 3600s
662 
				rekey_time = 3240s
663 
				rand_time = 360s
664 
				start_action = start
665 
				local_ts = [REDACTED]/24
666 
				remote_ts = [REDACTED]/24
667 
				esp_proposals = aes256-sha256-ecp384
668 
				close_action = start
669 
				dpd_action = restart
670 
			}
671 
			con22_44 {
672 
				# P2 (reqid 44): [REDACTED]2
673 
				mode = tunnel
674 
				policies = yes
675 
				life_time = 3600s
676 
				rekey_time = 3240s
677 
				rand_time = 360s
678 
				start_action = start
679 
				local_ts = [REDACTED]/24
680 
				remote_ts = [REDACTED]/24
681 
				esp_proposals = aes256-sha256-ecp384
682 
				close_action = start
683 
				dpd_action = restart
684 
			}
685 
		}
686 
	}
687 
	con11 {
688 
		# P1 (ikeid 11): [REDACTED]
689 
		fragmentation = yes
690 
		unique = replace
691 
		version = 2
692 
		proposals = aes256-sha256-modp2048
693 
		dpd_delay = 10s
694 
		rekey_time = 25920s
695 
		reauth_time = 0s
696 
		over_time = 2880s
697 
		rand_time = 2880s
698 
		encap = no
699 
		mobike = no
700 
		local_addrs = [REDACTED]
701 
		remote_addrs = [REDACTED]
702 
		local {
703 
			id = fqdn:[REDACTED]
704 
			auth = psk
705 
		}
706 
		remote {
707 
			id = [REDACTED]
708 
			auth = psk
709 
		}
710 
		children {
711 
			con11 {
712 
				# P2 (reqid 13): [REDACTED]
713 
				mode = tunnel
714 
				policies = yes
715 
				life_time = 28800s
716 
				rekey_time = 25920s
717 
				rand_time = 2880s
718 
				start_action = trap
719 
				remote_ts = [REDACTED]/24
720 
				local_ts = [REDACTED]/24
721 
				esp_proposals = aes256-sha256-modp2048
722 
				dpd_action = trap
723 
			}
724 
		}
725 
	}
726 
	con12 {
727 
		# P1 (ikeid 12): [REDACTED]
728 
		fragmentation = yes
729 
		unique = replace
730 
		version = 1
731 
		aggressive = yes
732 
		proposals = aes256-sha256-modp2048
733 
		dpd_delay = 10s
734 
		dpd_timeout = 60s
735 
		reauth_time = 25920s
736 
		over_time = 2880s
737 
		rand_time = 2880s
738 
		encap = no
739 
		mobike = no
740 
		local_addrs = [REDACTED]
741 
		remote_addrs = [REDACTED]
742 
		local {
743 
			id = fqdn:[REDACTED]
744 
			auth = psk
745 
		}
746 
		remote {
747 
			id = [REDACTED]
748 
			auth = psk
749 
		}
750 
		children {
751 
			con12_14 {
752 
				# P2 (reqid 14): [REDACTED]-1-Tunnel-1
753 
				mode = tunnel
754 
				policies = yes
755 
				life_time = 3600s
756 
				rekey_time = 3240s
757 
				rand_time = 360s
758 
				start_action = start
759 
				local_ts = [REDACTED]/24
760 
				remote_ts = [REDACTED]/22
761 
				esp_proposals = aes256-sha1
762 
				close_action = start
763 
				dpd_action = restart
764 
			}
765 
			con12_15 {
766 
				# P2 (reqid 15): [REDACTED]-1-Tunnel-2
767 
				mode = tunnel
768 
				policies = yes
769 
				life_time = 3600s
770 
				rekey_time = 3240s
771 
				rand_time = 360s
772 
				start_action = start
773 
				local_ts = [REDACTED]/24
774 
				remote_ts = [REDACTED]/24
775 
				esp_proposals = aes256-sha1
776 
				close_action = start
777 
				dpd_action = restart
778 
			}
779 
			con12_16 {
780 
				# P2 (reqid 16): [REDACTED]-1-Tunnel-3
781 
				mode = tunnel
782 
				policies = yes
783 
				life_time = 3600s
784 
				rekey_time = 3240s
785 
				rand_time = 360s
786 
				start_action = start
787 
				local_ts = [REDACTED]/24
788 
				remote_ts = [REDACTED]/24
789 
				esp_proposals = aes256-sha1
790 
				close_action = start
791 
				dpd_action = restart
792 
			}
793 
			con12_17 {
794 
				# P2 (reqid 17): [REDACTED]-1-Tunnel-4
795 
				mode = tunnel
796 
				policies = yes
797 
				life_time = 3600s
798 
				rekey_time = 3240s
799 
				rand_time = 360s
800 
				start_action = start
801 
				local_ts = [REDACTED]/24
802 
				remote_ts = [REDACTED]/24
803 
				esp_proposals = aes256-sha1
804 
				close_action = start
805 
				dpd_action = restart
806 
			}
807 
			con12_18 {
808 
				# P2 (reqid 18): [REDACTED]-1-Tunnel-5
809 
				mode = tunnel
810 
				policies = yes
811 
				life_time = 3600s
812 
				rekey_time = 3240s
813 
				rand_time = 360s
814 
				start_action = start
815 
				local_ts = [REDACTED]/24
816 
				remote_ts = [REDACTED]/24
817 
				esp_proposals = aes256-sha1
818 
				close_action = start
819 
				dpd_action = restart
820 
			}
821 
		}
822 
	}
823 
	con13 {
824 
		# P1 (ikeid 13): [REDACTED]
825 
		fragmentation = yes
826 
		unique = replace
827 
		version = 1
828 
		aggressive = yes
829 
		proposals = aes256-sha256-modp2048
830 
		dpd_delay = 10s
831 
		dpd_timeout = 60s
832 
		reauth_time = 25920s
833 
		over_time = 2880s
834 
		rand_time = 2880s
835 
		encap = no
836 
		mobike = no
837 
		local_addrs = [REDACTED]
838 
		remote_addrs = [REDACTED]
839 
		local {
840 
			id = [REDACTED]
841 
			auth = psk
842 
		}
843 
		remote {
844 
			id = [REDACTED]
845 
			auth = psk
846 
		}
847 
		children {
848 
			con13_19 {
849 
				# P2 (reqid 19): [REDACTED]-2-Tunnel-1
850 
				mode = tunnel
851 
				policies = yes
852 
				life_time = 3600s
853 
				rekey_time = 3240s
854 
				rand_time = 360s
855 
				start_action = trap
856 
				local_ts = [REDACTED]/24
857 
				remote_ts = [REDACTED]/22
858 
				esp_proposals = aes256-sha1
859 
				dpd_action = trap
860 
			}
861 
			con13_20 {
862 
				# P2 (reqid 20): [REDACTED]-2-Tunnel-2
863 
				mode = tunnel
864 
				policies = yes
865 
				life_time = 3600s
866 
				rekey_time = 3240s
867 
				rand_time = 360s
868 
				start_action = trap
869 
				local_ts = [REDACTED]/24
870 
				remote_ts = [REDACTED]/24
871 
				esp_proposals = aes256-sha1
872 
				dpd_action = trap
873 
			}
874 
			con13_21 {
875 
				# P2 (reqid 21): [REDACTED]-2-Tunnel-3
876 
				mode = tunnel
877 
				policies = yes
878 
				life_time = 3600s
879 
				rekey_time = 3240s
880 
				rand_time = 360s
881 
				start_action = trap
882 
				local_ts = [REDACTED]/24
883 
				remote_ts = [REDACTED]/24
884 
				esp_proposals = aes256-sha1
885 
				dpd_action = trap
886 
			}
887 
			con13_22 {
888 
				# P2 (reqid 22): [REDACTED]-2-Tunnel-4
889 
				mode = tunnel
890 
				policies = yes
891 
				life_time = 3600s
892 
				rekey_time = 3240s
893 
				rand_time = 360s
894 
				start_action = trap
895 
				local_ts = [REDACTED]/24
896 
				remote_ts = [REDACTED]/24
897 
				esp_proposals = aes256-sha1
898 
				dpd_action = trap
899 
			}
900 
			con13_23 {
901 
				# P2 (reqid 23): [REDACTED]-2-Tunnel-5
902 
				mode = tunnel
903 
				policies = yes
904 
				life_time = 3600s
905 
				rekey_time = 3240s
906 
				rand_time = 360s
907 
				start_action = trap
908 
				local_ts = [REDACTED]/24
909 
				remote_ts = [REDACTED]/24
910 
				esp_proposals = aes256-sha1
911 
				dpd_action = trap
912 
			}
913 
		}
914 
	}
915 
	con29 {
916 
		# P1 (ikeid 29): [REDACTED]
917 
		fragmentation = yes
918 
		unique = replace
919 
		version = 2
920 
		proposals = aes256-sha256-modp2048
921 
		dpd_delay = 10s
922 
		rekey_time = 25920s
923 
		reauth_time = 0s
924 
		over_time = 2880s
925 
		rand_time = 2880s
926 
		encap = no
927 
		mobike = no
928 
		local_addrs = [REDACTED]
929 
		remote_addrs = [REDACTED]
930 
		local {
931 
			id = fqdn:[REDACTED]
932 
			auth = psk
933 
		}
934 
		remote {
935 
			id = [REDACTED]
936 
			auth = psk
937 
		}
938 
		children {
939 
			con29 {
940 
				# P2 (reqid 52): [REDACTED]
941 
				mode = tunnel
942 
				policies = yes
943 
				life_time = 28800s
944 
				rekey_time = 25920s
945 
				rand_time = 2880s
946 
				start_action = trap
947 
				remote_ts = [REDACTED]/32
948 
				local_ts = [REDACTED]/24
949 
				esp_proposals = aes256-sha256-modp2048
950 
				dpd_action = trap
951 
			}
952 
		}
953 
	}
954 
	con20 {
955 
		# P1 (ikeid 20): [REDACTED]
956 
		fragmentation = yes
957 
		unique = replace
958 
		version = 2
959 
		proposals = aes256-sha256-modp2048
960 
		dpd_delay = 10s
961 
		rekey_time = 25920s
962 
		reauth_time = 0s
963 
		over_time = 2880s
964 
		rand_time = 2880s
965 
		encap = no
966 
		mobike = no
967 
		local_addrs = [REDACTED]
968 
		remote_addrs = [REDACTED]
969 
		local {
970 
			id = fqdn:[REDACTED]
971 
			auth = psk
972 
		}
973 
		remote {
974 
			id = [REDACTED]
975 
			auth = psk
976 
		}
977 
		children {
978 
			con20 {
979 
				# P2 (reqid 41): [REDACTED]
980 
				mode = tunnel
981 
				policies = yes
982 
				life_time = 28800s
983 
				rekey_time = 25920s
984 
				rand_time = 2880s
985 
				start_action = trap
986 
				remote_ts = [REDACTED]/24
987 
				local_ts = [REDACTED]/24
988 
				esp_proposals = aes256-sha256-modp2048
989 
				dpd_action = trap
990 
			}
991 
		}
992 
	}
993 
	con21 {
994 
		# P1 (ikeid 21): [REDACTED]
995 
		fragmentation = yes
996 
		unique = replace
997 
		version = 2
998 
		proposals = aes256-sha256-modp2048
999 
		dpd_delay = 10s
1000 
		rekey_time = 25920s
1001 
		reauth_time = 0s
1002 
		over_time = 2880s
1003 
		rand_time = 2880s
1004 
		encap = no
1005 
		mobike = no
1006 
		local_addrs = [REDACTED]
1007 
		remote_addrs = [REDACTED]
1008 
		local {
1009 
			id = fqdn:[REDACTED]
1010 
			auth = psk
1011 
		}
1012 
		remote {
1013 
			id = [REDACTED]
1014 
			auth = psk
1015 
		}
1016 
		children {
1017 
			con21 {
1018 
				# P2 (reqid 42): [REDACTED]
1019 
				mode = tunnel
1020 
				policies = yes
1021 
				life_time = 28800s
1022 
				rekey_time = 25920s
1023 
				rand_time = 2880s
1024 
				start_action = trap
1025 
				remote_ts = [REDACTED]/24
1026 
				local_ts = [REDACTED]/24
1027 
				esp_proposals = aes256-sha256-modp2048
1028 
				dpd_action = trap
1029 
			}
1030 
		}
1031 
	}
1032 
	con23 {
1033 
		# P1 (ikeid 23): [REDACTED]
1034 
		fragmentation = yes
1035 
		unique = replace
1036 
		version = 2
1037 
		proposals = aes256-sha256-modp2048
1038 
		dpd_delay = 10s
1039 
		rekey_time = 25920s
1040 
		reauth_time = 0s
1041 
		over_time = 2880s
1042 
		rand_time = 2880s
1043 
		encap = no
1044 
		mobike = no
1045 
		local_addrs = [REDACTED]
1046 
		remote_addrs = [REDACTED]
1047 
		local {
1048 
			id = fqdn:[REDACTED]
1049 
			auth = psk
1050 
		}
1051 
		remote {
1052 
			id = [REDACTED]
1053 
			auth = psk
1054 
		}
1055 
		children {
1056 
			con23 {
1057 
				# P2 (reqid 45): [REDACTED]
1058 
				mode = tunnel
1059 
				policies = yes
1060 
				life_time = 3600s
1061 
				rekey_time = 3240s
1062 
				rand_time = 360s
1063 
				start_action = trap
1064 
				remote_ts = [REDACTED]/24
1065 
				local_ts = [REDACTED]/24
1066 
				esp_proposals = aes256-sha256-modp2048
1067 
				dpd_action = trap
1068 
			}
1069 
		}
1070 
	}
1071 
	con2 {
1072 
		# P1 (ikeid 2): [REDACTED]
1073 
		fragmentation = yes
1074 
		unique = replace
1075 
		version = 2
1076 
		proposals = aes256-sha256-modp2048
1077 
		dpd_delay = 10s
1078 
		rekey_time = 25920s
1079 
		reauth_time = 0s
1080 
		over_time = 2880s
1081 
		rand_time = 2880s
1082 
		encap = no
1083 
		mobike = no
1084 
		local_addrs = [REDACTED]
1085 
		remote_addrs = [REDACTED]
1086 
		local {
1087 
			id = fqdn:[REDACTED]
1088 
			auth = psk
1089 
		}
1090 
		remote {
1091 
			id = [REDACTED]
1092 
			auth = psk
1093 
		}
1094 
		children {
1095 
			con2 {
1096 
				# P2 (reqid 2): [REDACTED]
1097 
				mode = tunnel
1098 
				policies = yes
1099 
				life_time = 28800s
1100 
				rekey_time = 25920s
1101 
				rand_time = 2880s
1102 
				start_action = trap
1103 
				remote_ts = [REDACTED]/24
1104 
				local_ts = [REDACTED]/24
1105 
				esp_proposals = aes256-sha256-modp2048
1106 
				dpd_action = trap
1107 
			}
1108 
		}
1109 
	}
1110 
	con24 {
1111 
		# P1 (ikeid 24): [REDACTED]
1112 
		fragmentation = yes
1113 
		unique = replace
1114 
		version = 2
1115 
		proposals = aes256-sha256-modp2048
1116 
		dpd_delay = 10s
1117 
		rekey_time = 25920s
1118 
		reauth_time = 0s
1119 
		over_time = 2880s
1120 
		rand_time = 2880s
1121 
		encap = no
1122 
		mobike = no
1123 
		local_addrs = [REDACTED]
1124 
		remote_addrs = [REDACTED]
1125 
		local {
1126 
			id = fqdn:[REDACTED]
1127 
			auth = psk
1128 
		}
1129 
		remote {
1130 
			id = [REDACTED]
1131 
			auth = psk
1132 
		}
1133 
		children {
1134 
			con24 {
1135 
				# P2 (reqid 46): [REDACTED]
1136 
				mode = tunnel
1137 
				policies = yes
1138 
				life_time = 28800s
1139 
				rekey_time = 25920s
1140 
				rand_time = 2880s
1141 
				start_action = trap
1142 
				remote_ts = [REDACTED]/24
1143 
				local_ts = [REDACTED]/24
1144 
				esp_proposals = aes256-sha256-modp2048
1145 
				dpd_action = trap
1146 
			}
1147 
		}
1148 
	}
1149 
	con25 {
1150 
		# P1 (ikeid 25): [REDACTED]
1151 
		fragmentation = yes
1152 
		unique = replace
1153 
		version = 2
1154 
		proposals = aes256-sha256-modp2048
1155 
		dpd_delay = 10s
1156 
		rekey_time = 25920s
1157 
		reauth_time = 0s
1158 
		over_time = 2880s
1159 
		rand_time = 2880s
1160 
		encap = no
1161 
		mobike = no
1162 
		local_addrs = [REDACTED]
1163 
		remote_addrs = [REDACTED]
1164 
		local {
1165 
			id = fqdn:[REDACTED]
1166 
			auth = psk
1167 
		}
1168 
		remote {
1169 
			id = [REDACTED]
1170 
			auth = psk
1171 
		}
1172 
		children {
1173 
			con25 {
1174 
				# P2 (reqid 48): [REDACTED]
1175 
				# P2 (reqid 47): [REDACTED]
1176 
				mode = tunnel
1177 
				policies = yes
1178 
				life_time = 28800s
1179 
				rekey_time = 25920s
1180 
				rand_time = 2880s
1181 
				start_action = trap
1182 
				remote_ts = [REDACTED]/24,[REDACTED]/24
1183 
				local_ts = [REDACTED]/24,[REDACTED]/24
1184 
				esp_proposals = aes256-sha256-modp2048
1185 
				dpd_action = trap
1186 
			}
1187 
		}
1188 
	}
1189 
	con26 {
1190 
		# P1 (ikeid 26): [REDACTED]
1191 
		fragmentation = yes
1192 
		unique = replace
1193 
		version = 2
1194 
		proposals = aes256-sha256-modp2048
1195 
		dpd_delay = 10s
1196 
		rekey_time = 25920s
1197 
		reauth_time = 0s
1198 
		over_time = 2880s
1199 
		rand_time = 2880s
1200 
		encap = no
1201 
		mobike = no
1202 
		local_addrs = [REDACTED]
1203 
		remote_addrs = [REDACTED]
1204 
		local {
1205 
			id = fqdn:[REDACTED]
1206 
			auth = psk
1207 
		}
1208 
		remote {
1209 
			id = [REDACTED]
1210 
			auth = psk
1211 
		}
1212 
		children {
1213 
			con26 {
1214 
				# P2 (reqid 49): [REDACTED]
1215 
				mode = tunnel
1216 
				policies = yes
1217 
				life_time = 28800s
1218 
				rekey_time = 25920s
1219 
				rand_time = 2880s
1220 
				start_action = start
1221 
				remote_ts = [REDACTED]/24
1222 
				local_ts = [REDACTED]/24
1223 
				esp_proposals = aes256-sha256-modp2048
1224 
				close_action = start
1225 
				dpd_action = restart
1226 
			}
1227 
		}
1228 
	}
1229 
	con27 {
1230 
		# P1 (ikeid 27): [REDACTED]
1231 
		fragmentation = yes
1232 
		unique = replace
1233 
		version = 2
1234 
		proposals = aes256-sha256-modp2048
1235 
		dpd_delay = 10s
1236 
		rekey_time = 25920s
1237 
		reauth_time = 0s
1238 
		over_time = 2880s
1239 
		rand_time = 2880s
1240 
		encap = no
1241 
		mobike = no
1242 
		local_addrs = [REDACTED]
1243 
		remote_addrs = [REDACTED]
1244 
		local {
1245 
			id = fqdn:[REDACTED]
1246 
			auth = psk
1247 
		}
1248 
		remote {
1249 
			id = [REDACTED]
1250 
			auth = psk
1251 
		}
1252 
		children {
1253 
			con27 {
1254 
				# P2 (reqid 50): [REDACTED]
1255 
				mode = tunnel
1256 
				policies = yes
1257 
				life_time = 28800s
1258 
				rekey_time = 25920s
1259 
				rand_time = 2880s
1260 
				start_action = trap
1261 
				remote_ts = [REDACTED]/24
1262 
				local_ts = [REDACTED]/24
1263 
				esp_proposals = aes256-sha256-modp2048
1264 
				dpd_action = trap
1265 
			}
1266 
		}
1267 
	}
1268 
	con14 {
1269 
		# P1 (ikeid 14): [REDACTED]
1270 
		fragmentation = yes
1271 
		unique = replace
1272 
		version = 2
1273 
		proposals = aes256-sha256-modp2048
1274 
		dpd_delay = 10s
1275 
		rekey_time = 25920s
1276 
		reauth_time = 0s
1277 
		over_time = 2880s
1278 
		rand_time = 2880s
1279 
		encap = no
1280 
		mobike = no
1281 
		local_addrs = [REDACTED]
1282 
		remote_addrs = [REDACTED]
1283 
		local {
1284 
			id = fqdn:[REDACTED]
1285 
			auth = psk
1286 
		}
1287 
		remote {
1288 
			id = [REDACTED]
1289 
			auth = psk
1290 
		}
1291 
		children {
1292 
			con14 {
1293 
				# P2 (reqid 25): [REDACTED]
1294 
				mode = tunnel
1295 
				policies = yes
1296 
				life_time = 28800s
1297 
				rekey_time = 25920s
1298 
				rand_time = 2880s
1299 
				start_action = trap
1300 
				remote_ts = [REDACTED]/24
1301 
				local_ts = [REDACTED]/24
1302 
				esp_proposals = aes256-sha256-modp2048
1303 
				dpd_action = trap
1304 
			}
1305 
		}
1306 
	}
1307 
	con28 {
1308 
		# P1 (ikeid 28): [REDACTED]
1309 
		fragmentation = yes
1310 
		unique = replace
1311 
		version = 2
1312 
		proposals = aes256-sha256-modp2048
1313 
		dpd_delay = 10s
1314 
		rekey_time = 25920s
1315 
		reauth_time = 0s
1316 
		over_time = 2880s
1317 
		rand_time = 2880s
1318 
		encap = no
1319 
		mobike = no
1320 
		local_addrs = [REDACTED]
1321 
		remote_addrs = [REDACTED]
1322 
		local {
1323 
			id = fqdn:[REDACTED]
1324 
			auth = psk
1325 
		}
1326 
		remote {
1327 
			id = [REDACTED]
1328 
			auth = psk
1329 
		}
1330 
		children {
1331 
			con28 {
1332 
				# P2 (reqid 51): [REDACTED]
1333 
				mode = tunnel
1334 
				policies = yes
1335 
				life_time = 28800s
1336 
				rekey_time = 25920s
1337 
				rand_time = 2880s
1338 
				start_action = start
1339 
				remote_ts = [REDACTED]
1340 
				local_ts = [REDACTED]/24
1341 
				esp_proposals = aes256-sha256-modp2048
1342 
				close_action = start
1343 
				dpd_action = restart
1344 
			}
1345 
		}
1346 
	}
1347 
	con30 {
1348 
		# P1 (ikeid 30): [REDACTED]
1349 
		fragmentation = yes
1350 
		unique = replace
1351 
		version = 2
1352 
		proposals = aes256-sha256-modp2048
1353 
		dpd_delay = 10s
1354 
		rekey_time = 25920s
1355 
		reauth_time = 0s
1356 
		over_time = 2880s
1357 
		rand_time = 2880s
1358 
		encap = no
1359 
		mobike = no
1360 
		local_addrs = [REDACTED]
1361 
		remote_addrs = [REDACTED]
1362 
		local {
1363 
			id = fqdn:[REDACTED]
1364 
			auth = psk
1365 
		}
1366 
		remote {
1367 
			id = [REDACTED]
1368 
			auth = psk
1369 
		}
1370 
		children {
1371 
			con30 {
1372 
				# P2 (reqid 53): [REDACTED]
1373 
				mode = tunnel
1374 
				policies = yes
1375 
				life_time = 28800s
1376 
				rekey_time = 25920s
1377 
				rand_time = 2880s
1378 
				start_action = trap
1379 
				remote_ts = [REDACTED]/24
1380 
				local_ts = [REDACTED]/24
1381 
				esp_proposals = aes256-sha256-modp2048
1382 
				dpd_action = trap
1383 
			}
1384 
		}
1385 
	}
1386 
	con31 {
1387 
		# P1 (ikeid 31): [REDACTED]
1388 
		fragmentation = yes
1389 
		unique = replace
1390 
		version = 2
1391 
		proposals = aes256-sha256-modp2048
1392 
		dpd_delay = 10s
1393 
		rekey_time = 25920s
1394 
		reauth_time = 0s
1395 
		over_time = 2880s
1396 
		rand_time = 2880s
1397 
		encap = no
1398 
		mobike = no
1399 
		local_addrs = [REDACTED]
1400 
		remote_addrs = [REDACTED]
1401 
		local {
1402 
			id = fqdn:[REDACTED]
1403 
			auth = psk
1404 
		}
1405 
		remote {
1406 
			id = [REDACTED]
1407 
			auth = psk
1408 
		}
1409 
		children {
1410 
			con31 {
1411 
				# P2 (reqid 54): [REDACTED]
1412 
				mode = tunnel
1413 
				policies = yes
1414 
				life_time = 28800s
1415 
				rekey_time = 25920s
1416 
				rand_time = 2880s
1417 
				start_action = trap
1418 
				remote_ts = [REDACTED]
1419 
				local_ts = [REDACTED]/24
1420 
				esp_proposals = aes256-sha256-modp2048
1421 
				dpd_action = trap
1422 
			}
1423 
		}
1424 
	}
1425 
	con32 {
1426 
		# P1 (ikeid 32): [REDACTED]
1427 
		fragmentation = yes
1428 
		unique = replace
1429 
		version = 2
1430 
		proposals = aes256-sha256-modp2048
1431 
		dpd_delay = 10s
1432 
		rekey_time = 25920s
1433 
		reauth_time = 0s
1434 
		over_time = 2880s
1435 
		rand_time = 2880s
1436 
		encap = no
1437 
		mobike = no
1438 
		local_addrs = [REDACTED]
1439 
		remote_addrs = [REDACTED]
1440 
		local {
1441 
			id = fqdn:[REDACTED]
1442 
			auth = psk
1443 
		}
1444 
		remote {
1445 
			id = [REDACTED]
1446 
			auth = psk
1447 
		}
1448 
		children {
1449 
			con32 {
1450 
				# P2 (reqid 55): [REDACTED]
1451 
				mode = tunnel
1452 
				policies = yes
1453 
				life_time = 28800s
1454 
				rekey_time = 25920s
1455 
				rand_time = 2880s
1456 
				start_action = trap
1457 
				remote_ts = [REDACTED]/24
1458 
				local_ts = [REDACTED]/24
1459 
				esp_proposals = aes256-sha256-modp2048
1460 
				dpd_action = trap
1461 
			}
1462 
		}
1463 
	}
1464 
	con33 {
1465 
		# P1 (ikeid 33): [REDACTED]
1466 
		fragmentation = yes
1467 
		unique = replace
1468 
		version = 2
1469 
		proposals = aes256-sha256-modp2048
1470 
		dpd_delay = 10s
1471 
		rekey_time = 25920s
1472 
		reauth_time = 0s
1473 
		over_time = 2880s
1474 
		rand_time = 2880s
1475 
		encap = no
1476 
		mobike = no
1477 
		local_addrs = [REDACTED]
1478 
		remote_addrs = [REDACTED]
1479 
		local {
1480 
			id = fqdn:[REDACTED]
1481 
			auth = psk
1482 
		}
1483 
		remote {
1484 
			id = [REDACTED]
1485 
			auth = psk
1486 
		}
1487 
		children {
1488 
			con33 {
1489 
				# P2 (reqid 56): [REDACTED]
1490 
				mode = tunnel
1491 
				policies = yes
1492 
				life_time = 28800s
1493 
				rekey_time = 25920s
1494 
				rand_time = 2880s
1495 
				start_action = trap
1496 
				remote_ts = [REDACTED]/24
1497 
				local_ts = [REDACTED]/24
1498 
				esp_proposals = aes256-sha256-modp2048
1499 
				dpd_action = trap
1500 
			}
1501 
		}
1502 
	}
1503 
	con1 {
1504 
		# P1 (ikeid 1): [REDACTED]'s House
1505 
		fragmentation = yes
1506 
		unique = replace
1507 
		version = 2
1508 
		proposals = aes256-sha256-modp2048
1509 
		dpd_delay = 10s
1510 
		rekey_time = 25920s
1511 
		reauth_time = 0s
1512 
		over_time = 2880s
1513 
		rand_time = 2880s
1514 
		encap = no
1515 
		mobike = no
1516 
		local_addrs = [REDACTED]
1517 
		remote_addrs = [REDACTED]
1518 
		local {
1519 
			id = fqdn:[REDACTED]
1520 
			auth = psk
1521 
		}
1522 
		remote {
1523 
			id = fqdn:[REDACTED]
1524 
			auth = psk
1525 
		}
1526 
		children {
1527 
			con1 {
1528 
				# P2 (reqid 1): [REDACTED]
1529 
				mode = tunnel
1530 
				policies = yes
1531 
				life_time = 28800s
1532 
				rekey_time = 25920s
1533 
				rand_time = 2880s
1534 
				start_action = trap
1535 
				remote_ts = [REDACTED]/24
1536 
				local_ts = [REDACTED]/24
1537 
				esp_proposals = aes256-sha256-modp2048
1538 
				dpd_action = trap
1539 
			}
1540 
		}
1541 
	}
1542 
	con37 {
1543 
		# P1 (ikeid 37): [REDACTED]
1544 
		fragmentation = yes
1545 
		unique = replace
1546 
		version = 2
1547 
		proposals = aes256-sha256-modp2048
1548 
		dpd_delay = 10s
1549 
		rekey_time = 25920s
1550 
		reauth_time = 0s
1551 
		over_time = 2880s
1552 
		rand_time = 2880s
1553 
		encap = no
1554 
		mobike = no
1555 
		local_addrs = [REDACTED]
1556 
		remote_addrs = [REDACTED]
1557 
		local {
1558 
			id = fqdn:[REDACTED]
1559 
			auth = psk
1560 
		}
1561 
		remote {
1562 
			id = fqdn:[REDACTED]
1563 
			auth = psk
1564 
		}
1565 
		children {
1566 
			con37 {
1567 
				# P2 (reqid 62): [REDACTED]
1568 
				mode = tunnel
1569 
				policies = yes
1570 
				life_time = 28800s
1571 
				rekey_time = 25920s
1572 
				rand_time = 2880s
1573 
				start_action = start
1574 
				remote_ts = [REDACTED]/24
1575 
				local_ts = [REDACTED]/24
1576 
				esp_proposals = aes256-sha256-modp2048
1577 
				close_action = start
1578 
				dpd_action = restart
1579 
			}
1580 
		}
1581 
	}
1582 
	con34 {
1583 
		# P1 (ikeid 34): [REDACTED]
1584 
		fragmentation = yes
1585 
		unique = replace
1586 
		version = 2
1587 
		proposals = aes256gcm128-sha512-ecp521
1588 
		dpd_delay = 10s
1589 
		rekey_time = 25920s
1590 
		reauth_time = 0s
1591 
		over_time = 2880s
1592 
		rand_time = 2880s
1593 
		encap = no
1594 
		mobike = no
1595 
		local_addrs = [REDACTED]
1596 
		remote_addrs = [REDACTED]
1597 
		local {
1598 
			id = fqdn:[REDACTED]
1599 
			auth = psk
1600 
		}
1601 
		remote {
1602 
			id = fqdn:[REDACTED]
1603 
			auth = psk
1604 
		}
1605 
		children {
1606 
			con34 {
1607 
				# P2 (reqid 57): [REDACTED]
1608 
				mode = tunnel
1609 
				policies = yes
1610 
				life_time = 3600s
1611 
				rekey_time = 3240s
1612 
				rand_time = 360s
1613 
				start_action = trap
1614 
				remote_ts = [REDACTED]/24
1615 
				local_ts = [REDACTED]/24
1616 
				esp_proposals = aes256gcm128-ecp521
1617 
				dpd_action = trap
1618 
			}
1619 
		}
1620 
	}
1621 
	con46 {
1622 
		# P1 (ikeid 46): [REDACTED]
1623 
		fragmentation = yes
1624 
		unique = replace
1625 
		version = 2
1626 
		proposals = aes256-sha256-modp2048
1627 
		dpd_delay = 10s
1628 
		rekey_time = 25920s
1629 
		reauth_time = 0s
1630 
		over_time = 2880s
1631 
		rand_time = 2880s
1632 
		encap = no
1633 
		mobike = no
1634 
		local_addrs = [REDACTED]
1635 
		remote_addrs = [REDACTED]
1636 
		local {
1637 
			id = fqdn:[REDACTED]
1638 
			auth = psk
1639 
		}
1640 
		remote {
1641 
			id = fqdn:[REDACTED]
1642 
			auth = psk
1643 
		}
1644 
		children {
1645 
			con46 {
1646 
				# P2 (reqid 139): [REDACTED]
1647 
				mode = tunnel
1648 
				policies = yes
1649 
				life_time = 28800s
1650 
				rekey_time = 25920s
1651 
				rand_time = 2880s
1652 
				start_action = start
1653 
				remote_ts = [REDACTED]/24
1654 
				local_ts = [REDACTED]/24
1655 
				esp_proposals = aes256-sha256-modp2048
1656 
				close_action = start
1657 
				dpd_action = restart
1658 
			}
1659 
		}
1660 
	}
1661 
	con47 {
1662 
		# P1 (ikeid 47): [REDACTED]
1663 
		fragmentation = yes
1664 
		unique = replace
1665 
		version = 2
1666 
		proposals = aes256-sha256-modp2048
1667 
		dpd_delay = 10s
1668 
		rekey_time = 25920s
1669 
		reauth_time = 0s
1670 
		over_time = 2880s
1671 
		rand_time = 2880s
1672 
		encap = no
1673 
		mobike = no
1674 
		local_addrs = [REDACTED]
1675 
		remote_addrs = [REDACTED]
1676 
		local {
1677 
			id = fqdn:[REDACTED]
1678 
			auth = psk
1679 
		}
1680 
		remote {
1681 
			id = fqdn:[REDACTED]
1682 
			auth = psk
1683 
		}
1684 
		children {
1685 
			con47 {
1686 
				# P2 (reqid 140): [REDACTED]
1687 
				mode = tunnel
1688 
				policies = yes
1689 
				life_time = 3600s
1690 
				rekey_time = 3240s
1691 
				rand_time = 360s
1692 
				start_action = trap
1693 
				remote_ts = [REDACTED]/24
1694 
				local_ts = [REDACTED]/24
1695 
				esp_proposals = aes256-sha256-modp2048
1696 
				dpd_action = trap
1697 
			}
1698 
		}
1699 
	}
1700 
	con15 {
1701 
		# P1 (ikeid 15): [REDACTED]
1702 
		fragmentation = yes
1703 
		unique = replace
1704 
		version = 2
1705 
		proposals = aes256-sha256-modp2048
1706 
		dpd_delay = 45s
1707 
		rekey_time = 25920s
1708 
		reauth_time = 0s
1709 
		over_time = 2880s
1710 
		rand_time = 2880s
1711 
		encap = no
1712 
		mobike = no
1713 
		local_addrs = [REDACTED]
1714 
		remote_addrs = [REDACTED]
1715 
		local {
1716 
			id = fqdn:[REDACTED]
1717 
			auth = psk
1718 
		}
1719 
		remote {
1720 
			id = [REDACTED]
1721 
			auth = psk
1722 
		}
1723 
		children {
1724 
			con15 {
1725 
				# P2 (reqid 24): [REDACTED]
1726 
				mode = tunnel
1727 
				policies = yes
1728 
				life_time = 28800s
1729 
				rekey_time = 25920s
1730 
				rand_time = 2880s
1731 
				start_action = start
1732 
				remote_ts = [REDACTED]/27
1733 
				local_ts = [REDACTED]/24
1734 
				esp_proposals = aes256-sha256-modp1024
1735 
				close_action = start
1736 
				dpd_action = restart
1737 
			}
1738 
		}
1739 
	}
1740 
}
1741 
secrets {
1742 
	ike-0 {
1743 
		secret = [REDACTED]
1744 
		id-0 = %any
1745 
		id-1 = [REDACTED]
1746 
	}
1747 
	ike-1 {
1748 
		secret = [REDACTED]
1749 
		id-0 = %any
1750 
		id-1 = [REDACTED]
1751 
	}
1752 
	ike-2 {
1753 
		secret = [REDACTED]
1754 
		id-0 = %any
1755 
		id-1 = [REDACTED]
1756 
	}
1757 
	ike-3 {
1758 
		secret = [REDACTED]
1759 
		id-0 = %any
1760 
		id-1 = [REDACTED]
1761 
	}
1762 
	ike-4 {
1763 
		secret = [REDACTED]
1764 
		id-0 = %any
1765 
		id-1 = [REDACTED]
1766 
	}
1767 
	ike-5 {
1768 
		secret = [REDACTED]
1769 
		id-0 = %any
1770 
		id-1 = [REDACTED]
1771 
	}
1772 
	ike-6 {
1773 
		secret = [REDACTED]
1774 
		id-0 = %any
1775 
		id-1 = [REDACTED]
1776 
	}
1777 
	ike-7 {
1778 
		secret = [REDACTED]
1779 
		id-0 = %any
1780 
		id-1 = [REDACTED]
1781 
	}
1782 
	ike-8 {
1783 
		secret = [REDACTED]
1784 
		id-0 = %any
1785 
		id-1 = [REDACTED]
1786 
	}
1787 
	ike-9 {
1788 
		secret = [REDACTED]
1789 
		id-0 = %any
1790 
		id-1 = [REDACTED]
1791 
	}
1792 
	ike-10 {
1793 
		secret = [REDACTED]
1794 
		id-0 = %any
1795 
		id-1 = [REDACTED]
1796 
	}
1797 
	ike-11 {
1798 
		secret = [REDACTED]
1799 
		id-0 = %any
1800 
		id-1 = [REDACTED]
1801 
	}
1802 
	ike-12 {
1803 
		secret = [REDACTED]
1804 
		id-0 = %any
1805 
		id-1 = [REDACTED]
1806 
	}
1807 
	ike-13 {
1808 
		secret = [REDACTED]
1809 
		id-0 = %any
1810 
		id-1 = [REDACTED]
1811 
	}
1812 
	ike-14 {
1813 
		secret = [REDACTED]
1814 
		id-0 = %any
1815 
		id-1 = [REDACTED]
1816 
	}
1817 
	ike-15 {
1818 
		secret = [REDACTED]
1819 
		id-0 = %any
1820 
		id-1 = [REDACTED]
1821 
	}
1822 
	ike-16 {
1823 
		secret = [REDACTED]
1824 
		id-0 = %any
1825 
		id-1 = [REDACTED]
1826 
	}
1827 
	ike-17 {
1828 
		secret = [REDACTED]
1829 
		id-0 = %any
1830 
		id-1 = [REDACTED]
1831 
	}
1832 
	ike-18 {
1833 
		secret = [REDACTED]
1834 
		id-0 = %any
1835 
		id-1 = [REDACTED]
1836 
	}
1837 
	ike-19 {
1838 
		secret = [REDACTED]
1839 
		id-0 = %any
1840 
		id-1 = [REDACTED]
1841 
	}
1842 
	ike-20 {
1843 
		secret = [REDACTED]
1844 
		id-0 = %any
1845 
		id-1 = [REDACTED]
1846 
	}
1847 
	ike-21 {
1848 
		secret = [REDACTED]
1849 
		id-0 = %any
1850 
		id-1 = [REDACTED]
1851 
	}
1852 
	ike-22 {
1853 
		secret = [REDACTED]
1854 
		id-0 = %any
1855 
		id-1 = [REDACTED]
1856 
	}
1857 
	ike-23 {
1858 
		secret = [REDACTED]
1859 
		id-0 = %any
1860 
		id-1 = [REDACTED]
1861 
	}
1862 
	ike-24 {
1863 
		secret = [REDACTED]
1864 
		id-0 = %any
1865 
		id-1 = [REDACTED]
1866 
	}
1867 
	ike-25 {
1868 
		secret = [REDACTED]
1869 
		id-0 = %any
1870 
		id-1 = [REDACTED]
1871 
	}
1872 
	ike-26 {
1873 
		secret = [REDACTED]
1874 
		id-0 = %any
1875 
		id-1 = [REDACTED]
1876 
	}
1877 
	ike-27 {
1878 
		secret = [REDACTED]
1879 
		id-0 = %any
1880 
		id-1 = [REDACTED]
1881 
	}
1882 
	ike-28 {
1883 
		secret = [REDACTED]
1884 
		id-0 = %any
1885 
		id-1 = fqdn:[REDACTED]
1886 
	}
1887 
	ike-29 {
1888 
		secret = [REDACTED]
1889 
		id-0 = %any
1890 
		id-1 = fqdn:[REDACTED]
1891 
	}
1892 
	ike-30 {
1893 
		secret = [REDACTED]
1894 
		id-0 = %any
1895 
		id-1 = fqdn:[REDACTED]
1896 
	}
1897 
	ike-31 {
1898 
		secret = [REDACTED]
1899 
		id-0 = %any
1900 
		id-1 = fqdn:[REDACTED]
1901 
	}
1902 
	ike-32 {
1903 
		secret = [REDACTED]
1904 
		id-0 = %any
1905 
		id-1 = fqdn:[REDACTED]
1906 
	}
1907 
	ike-33 {
1908 
		secret = [REDACTED]
1909 
		id-0 = %any
1910 
		id-1 = [REDACTED]
1911 
	}
1912 
	ike-34 {
1913 
		secret = [REDACTED]
1914 
		id-0 = [REDACTED]
1915 
	}
1916 
}
(5-5/7)