Configure strongSwan (Fedora/RHEL/Centos site-to-site)
An example of how to configure strongSwan on each peer in the IPsec site-to-site VPN use case.
White papers
list_alt
An example of how to configure strongSwan on each peer in the IPsec site-to-site VPN use case.
connections {
devcloud1 {
local_addrs = 172.16.0.4
remote_addrs = 10.10.2.3
dpd_delay = 60s
rekey_time = 4h
proposals = aes128gcm128-sha2_256-ecp256
version = 2
local {
auth = pubkey
certs = /etc/strongswan/ipsec.d/certs/devcloud1.vpn.am.crt
id = devcloud1.vpn.am
}
remote {
auth = pubkey
id = server.vpn.am
}
children {
tunnel-1 {
local_ts = 0.0.0.0/0
remote_ts = 0.0.0.0/0
mark_in = 42
mark_out = 42
rekey_time = 1h
esp_proposals = aes128gcm128-ecp256
dpd_action = restart
}
}
}
}
Get Started An introduction to the Ciena Vyatta NOS
The Vyatta NOS Overview Get to know more about how Vyatta NOS is the best solution
Vyatta NOS Architecture Overview An overview of the Vyatta NOS system architecture
Troubleshooting Guide Identify common issues with your configuration and network setup
Copyright © 2023 Ciena Corporation. All rights reserved