diff options
author | Martin Willi <martin@revosec.ch> | 2013-07-29 09:00:56 +0200 |
---|---|---|
committer | Martin Willi <martin@revosec.ch> | 2013-07-29 09:00:56 +0200 |
commit | 14dfdf7dacfff99aa4ba468e8618afaec1c0657b (patch) | |
tree | 17a1c5df0603cd8a093432e4003638e6a256a4b4 /testing/tests/ikev1/xauth-rsa-radius/hosts/carol/etc/ipsec.conf | |
parent | 7612a6e42fa4779adbeab74ec044bd554d00c3b3 (diff) | |
parent | 9d75f04eee7fd4e0f9b14fac3f9a67993d8c2267 (diff) | |
download | strongswan-14dfdf7dacfff99aa4ba468e8618afaec1c0657b.tar.bz2 strongswan-14dfdf7dacfff99aa4ba468e8618afaec1c0657b.tar.xz |
Merge branch 'xauth-radius'
Implements verification of XAuth credentials using simple RADIUS User-Name and
(encrypted) User-Password attributes. The XAuth backend is implemented in the
eap-radius plugin, reusing all existing infrastructure and features found in
that plugin, including RADIUS accounting.
Diffstat (limited to 'testing/tests/ikev1/xauth-rsa-radius/hosts/carol/etc/ipsec.conf')
-rw-r--r-- | testing/tests/ikev1/xauth-rsa-radius/hosts/carol/etc/ipsec.conf | 23 |
1 files changed, 23 insertions, 0 deletions
diff --git a/testing/tests/ikev1/xauth-rsa-radius/hosts/carol/etc/ipsec.conf b/testing/tests/ikev1/xauth-rsa-radius/hosts/carol/etc/ipsec.conf new file mode 100644 index 000000000..2fdd60f00 --- /dev/null +++ b/testing/tests/ikev1/xauth-rsa-radius/hosts/carol/etc/ipsec.conf @@ -0,0 +1,23 @@ +# /etc/ipsec.conf - strongSwan IPsec configuration file + +config setup + +conn %default + ikelifetime=60m + keylife=20m + rekeymargin=3m + keyingtries=1 + keyexchange=ikev1 + +conn home + left=PH_IP_CAROL + leftcert=carolCert.pem + leftid=carol@strongswan.org + leftauth=pubkey + leftauth2=xauth + leftfirewall=yes + right=PH_IP_MOON + rightsubnet=10.1.0.0/16 + rightid=@moon.strongswan.org + rightauth=pubkey + auto=add |