📄 ipsec.conf
字号:
# /etc/ipsec.conf - FreeS/WAN IPsec configuration file# More elaborate and more varied sample configurations can be found# in FreeS/WAN's doc/examples file, and in the HTML documentation.# basic configurationconfig setup # THIS SETTING MUST BE CORRECT or almost nothing will work; # %defaultroute is okay for most simple cases. # interfaces=%defaultroute # interfaces="ipsec0=eth0" interfaces="ipsec1=eth1" # Debug-logging controls: "none" for (almost) none, "all" for lots. klipsdebug=none plutodebug=none pluto=no # Manual connections to be started at startup manualstart="etw_transport_ah_md5" # manualstart="etw_transport_ah_sha1" # manualstart="etw_tunnel_ah_md5" # manualstart="etw_tunnel_ah_sha1" # manualstart="etw_transport_esp_md5" # manualstart="etw_transport_esp_sha1" # manualstart="etw_tunnel_esp_md5" # manualstart="etw_tunnel_esp_sha1" # Use auto= parameters in conn descriptions to control startup actions. # plutoload=%search # plutoload="linux_etw" # plutostart=%search # plutostart="linux_etw" # Close down old connection when new one using same ID shows up. # uniqueids=no# defaults for subsequent connection descriptions# (these defaults will soon go away)conn %default keyingtries=0 # disablearrivalcheck=no # authby=rsasig # leftrsasigkey=%cert # rightrsasigkey=%cert # spi=0x300 # esp=3des-md5-96 # espenckey=0x01234567_89abcdef_02468ace_13579bdf_12345678_9abcdef0 # espauthkey=0x12345678_9abcdef0_2468ace0_13579bdf # keylife=8h######################################################## USAGI sample configurations########################################################------------------------------------------------------# AH Transport with MD5conn etw_transport_ah_md5 type=transport left=192.168.1.20 right=192.168.1.21 spi=0x300 ah=hmac-md5-96 ahkey=0x12345678_9abcdef0_2468ace0_13579bdf#------------------------------------------------------# AH Transport with SHA1conn etw_transport_ah_sha1 type=transport left=192.168.1.20 right=192.168.1.21 spi=0x301 ah=hmac-sha1-96 ahkey=0x12345678_9abcdef0_2468ace0_13579bdf_acabeffe#------------------------------------------------------# AH Tunnel with MD5conn etw_tunnel_ah_md5 type=tunnel left=192.168.1.20 leftnexthop=192.168.1.1 right=192.168.1.21 rightnexthop=192.168.1.1 spi=0x302 ah=hmac-md5-96 ahkey=0x12345678_9abcdef0_2468ace0_13579bdf#------------------------------------------------------# AH Tunnel with SHA1conn etw_tunnel_ah_sha1 type=tunnel left=192.168.1.20 leftnexthop=192.168.1.1 right=192.168.1.21 rightnexthop=192.168.1.1 spi=0x303 ah=hmac-sha1-96 ahkey=0x12345678_9abcdef0_2468ace0_13579bdf_acabeffe#------------------------------------------------------# ESP Transport with 3DES and MD5conn etw_transport_esp_md5 type=transport left=192.168.1.20 right=192.168.1.21 spi=0x304 esp=3des-md5-96 espenckey=0x23232323_23232323_23232323_23232323_23232323_23232323 espauthkey=0x12345678_9abcdef0_2468ace0_13579bdf#------------------------------------------------------# ESP Transport with 3DES and SHA1conn etw_transport_esp_sha1 type=transport left=192.168.1.20 right=192.168.1.21 spi=0x305 esp=3des-sha1-96 espenckey=0x23232323_23232323_23232323_23232323_23232323_23232323 espauthkey=0x12345678_9abcdef0_2468ace0_13579bdf_acabeffe#------------------------------------------------------# ESP Tunnel with 3DES and MD5conn etw_tunnel_esp_md5 type=tunnel left=192.168.1.20 leftnexthop=192.168.1.1 right=192.168.1.21 rightnexthop=192.168.1.1 spi=0x306 esp=3des-md5-96 espenckey=0x23232323_23232323_23232323_23232323_23232323_23232323 espauthkey=0x12345678_9abcdef0_2468ace0_13579bdf#------------------------------------------------------# ESP Tunnel with 3DES and SHA1conn etw_tunnel_esp_sha1 type=tunnel left=192.168.1.20 leftnexthop=192.168.1.1 right=192.168.1.21 rightnexthop=192.168.1.1 spi=0x307 esp=3des-sha1-96 espenckey=0x23232323_23232323_23232323_23232323_23232323_23232323 espauthkey=0x12345678_9abcdef0_2468ace0_13579bdf_acabeffe⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -