jcarr
/
wit-network-config
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

minor adjustments to swanctl config template after making all these upgrades to ipsec.conf. ipsec.conf is still the one active, swanctl not cut over yet

This commit is contained in:
toby 2018-12-01 18:29:29 +01:00
parent d1e2f90bd6
commit bfbd9068e4
1 changed files with 2 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
files/wit-swanctl.conf
View File

@ -1,6 +1,5 @@
connections { connections {
loopback4 { loopback4 {
version = 1
local_addrs = LOOPBACKv4 local_addrs = LOOPBACKv4
remote_addrs = %any4 remote_addrs = %any4
proposals = aes256-sha512-modp4096 proposals = aes256-sha512-modp4096
@ -17,7 +16,7 @@ connections {
children { children {
loopback4 { loopback4 {
interface = lo,feth+ interface = lo
remote_ts = IPSEC_IPV4_SUBNETS remote_ts = IPSEC_IPV4_SUBNETS
local_ts = LOOPBACKv4 local_ts = LOOPBACKv4
mode = transport mode = transport
@ -28,7 +27,6 @@ connections {
} }
loopback6 { loopback6 {
version = 1
local_addrs = LOOPBACKv6 local_addrs = LOOPBACKv6
remote_addrs = %any6 remote_addrs = %any6
proposals = aes256-sha512-modp4096 proposals = aes256-sha512-modp4096
@ -45,7 +43,7 @@ connections {
children { children {
loopback6 { loopback6 {
interface = lo,feth+ interface = lo
remote_ts = IPSEC_IPV6_SUBNETS remote_ts = IPSEC_IPV6_SUBNETS
local_ts = LOOPBACKv6 local_ts = LOOPBACKv6
mode = transport mode = transport