#
#
-conn avm2swan
- aggressive=yes
- left=hoellein.online
- leftsubnet=192.168.2.0/24
- leftfirewall=yes
- lefthostaccess=yes
- right=home.hoellein.online
- rightsubnet=192.168.1.0/24
- rightallowany=yes
- leftid="@hoellein.online"
- rightid="@home.hoellein.online"
- ike=aes256-sha1-modp1024
- esp=aes256-sha1-modp1024
- keyexchange=ikev1
- ikelifetime=1h
- margintime=9m
- rekey=yes
- reauth=yes
- keylife=8h
- compress=yes
- dpddelay=30
- dpdtimeout=60
- dpdaction=restart
- authby=secret
- auto=add
+#conn avm2swan
+# aggressive=yes
+# left=hoellein.online
+# leftsubnet=192.168.2.0/24
+# leftfirewall=yes
+# lefthostaccess=yes
+# right=home.hoellein.online
+# rightsubnet=192.168.1.0/24
+# rightallowany=yes
+# leftid="@hoellein.online"
+# rightid="@home.hoellein.online"
+# ike=aes256-sha1-modp1024
+# esp=aes256-sha1-modp1024
+# keyexchange=ikev1
+# ikelifetime=1h
+# margintime=9m
+# rekey=yes
+# reauth=yes
+# keylife=8h
+# compress=yes
+# dpddelay=30
+# dpdtimeout=60
+# dpdaction=restart
+# authby=secret
+# auto=add
+#
+#
+#
+#
+conn %default
+ left=hoellein.online
+ leftsubnet=192.168.42.0/24
+ authby=secret
+ auto=start
+conn fb
+ ike=aes256-sha-modp1024
+ esp=aes256-sha1-modp1024
+ right=home.hoellein.online
+ rightid=@home.hoellein.online
+ rightsubnet=192.168.1.0/24
+ ikelifetime=3600s
+ keylife=3600s
# RSA private key for this host, authenticating it to any other host
# which knows the public part.
#@mail.hoellein.online @fritzbox : PSK "VERYSECRET;-)"
-hoellein.online @home.hoellein.online : PSK 'VERYSECRET;-)'
+#
+#hoellein.online @home.hoellein.online : PSK 'VERYSECRET;-)'
+@hoellein.online @home.hoellein.online : PSK "sicherISTsicher"
projects / vserver / commitdiff