# /etc/ipsec.conf - Libreswan IPsec configuration file version 2.0 config setup # put the logs in /tmp for the UMLs, so that we can operate # without syslogd, which seems to break on UMLs protostack=netkey plutostderrlog=/tmp/pluto.log plutorestartoncrash=false plutodebug=all dumpdir=/tmp nat_traversal=yes include /testing/baseconfigs/all/etc/ipsec.d/ipsec.conf.common conn northnet-eastnet-nat left=%defaultroute # Causes failure to orient if it comes in through an include? # also=northnet leftsubnet=192.0.3.0/24 leftnexthop=192.1.3.254 leftid="C=ca, ST=Ontario, O=Libreswan, OU=Test Department, CN=north.testing.libreswan.org, E=testing@libreswan.org" leftcert=north leftrsasigkey=%cert leftsendcert=always # this causes breakage leftca=%same # right=192.1.2.23 # Causes failure to orient if it comes in through an include? # also=eastnet rightsubnet=192.0.2.0/24 rightnexthop=192.1.2.254 rightid="C=ca, ST=Ontario, O=Libreswan, OU=Test Department, CN=east.testing.libreswan.org, E=testing@libreswan.org" #rightcert=east rightrsasigkey=%cert rightsendcert=always rightca=%same