User guide

Appendix G - IPSEC

User Guide 383

interfaces="%defaultroute"

klipsdebug=none

plutodebug=none

plutoload=%search

plutostart=%search

# defaults that apply to all connection descriptions

conn %default

keyingtries=0

# How to authenticate gatways

authby=rsasign

# VPN connection for head office and branch office

conn head-branch

# identity we use in authentication exchanges

leftid=@head.example.com

leftrsasigkey=0x175cffc641f...

# left security gateway (public-network address)

left=e.f.g.h

# next hop to reach right

leftnexthop=e.f.g.i

# right s.g., subnet behind it, and next hop to reach left

rightid=@branch.example.com

rightrsasigkey=0xfc641fd6d9a24...

right=j.k.l.n

rightnexthop=j.k.l.m