Install IPsec certificate keys (Fedora/RHEL/Centos site-to-site)
An example of how to install the certificate keys for the IPsec site-to-site VPN use case.
- Install the peer certificate key to /etc/strongswan/ipsec.d/private/.
cp -a ~/devcloud1.vpn.am.key /etc/strongswan/ipsec.d/private/
- To ensure that the strongSwan process knows about the presence of the peer certificate key, edit the configuration file at /etc/strongswan/ipsec.secrets. Add the following content.
# ipsec.secrets - strongSwan IPsec secrets file : RSA devcloud1.vpn.am.key