vpp/extras/strongswan/configs/responder_vrf/ipsec1.conf

config setup
  strictcrlpolicy=no

conn initiator
  mobike=no
  auto=add
  type=tunnel
  keyexchange=ikev2
  ike=aes256gcm16-prfsha256-modp2048!
  esp=aes256gcm16-esn!
  lifetime=1m

# local:
  leftauth=psk
  leftid=@roadwarrior1.vpn.example.com
  leftsubnet=192.168.5.0/24

# remote: (gateway)
  rightid=@vpp.home
  right=192.168.10.2
  rightauth=psk
  rightsubnet=192.168.3.0/24
misc: add ikev2 tests usecases Type: test Ticket: VPP-1893 Change-Id: Ib6ffd00e73f7110bf9e702f4a0fd5c68395d6786 Signed-off-by: Filip Tehlar <ftehlar@cisco.com> 2021-02-20 02:26:17 +00:00			`config setup`
			`strictcrlpolicy=no`

			`conn initiator`
			`mobike=no`
			`auto=add`
			`type=tunnel`
			`keyexchange=ikev2`
			`ike=aes256gcm16-prfsha256-modp2048!`
			`esp=aes256gcm16-esn!`
			`lifetime=1m`

			`# local:`
			`leftauth=psk`
			`leftid=@roadwarrior1.vpn.example.com`
			`leftsubnet=192.168.5.0/24`

			`# remote: (gateway)`
			`rightid=@vpp.home`
			`right=192.168.10.2`
			`rightauth=psk`
			`rightsubnet=192.168.3.0/24`