# /etc/strongswan.conf - strongSwan configuration file

charon {
  load = pem pkcs1 random nonce openssl curl revocation stroke kernel-netlink socket-default eap-tls updown
  multiple_authentication=no
  syslog {
    daemon {
      tls = 2
    }
  }
}

libtls {
  suites = TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256, TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
}