# /etc/strongswan.conf - strongSwan configuration file

charon {
  load = curl pem pkcs1 random nonce openssl revocation hmac xcbc stroke kernel-netlink socket-default eap-tls updown
  multiple_authentication=no
}

libtls {
  key_exchange = ecdhe-ecdsa
  cipher = aes128
  mac = sha256
}