projects / gpl / argeo-freed.git / blobdiff
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Introduce RPM spec file
[gpl/argeo-freed.git] / etc / ipsec.d / roaming-host.conf
diff --git a/etc/ipsec.d/roaming-host.conf b/etc/ipsec.d/roaming-host.conf
new file mode 100644 (file)
index 0000000..57631be
--- /dev/null
+++ b/etc/ipsec.d/roaming-host.conf
@@ -0,0 +1,21 @@
+conn roaming-host-ipv6
+       also=roaming-host-common
+       hostaddrfamily=ipv6
+
+conn roaming-host-ipv4
+       also=roaming-host-common
+       hostaddrfamily=ipv4
+       # Required so that client is considered IPv6:
+       rightsubnet=::/0
+       ipsec-interface=yes
+       leftupdown="/usr/libexec/ipsec/_updown.host4client6"
+
+conn roaming-host-common 
+       also=roaming-host-domain
+       # Authorisation
+       authby=rsa-sha2
+       leftid=%fromcert
+       rightid=%fromcert
+       # Networking
+       clientaddrfamily=ipv6
+       right=%any
Argeo FREEd - Fair Reasonable Extensible Expectations daemons