User manual
25: Dynamic Multipoint Virtual Private Network (DMVPN)
_______________________________________________________________________________________________________
/etc/config/strongswan
To view the configuration file, use uci show strongswan or uci export
strongswan commands.
root@GWxxxx:~# uci show strongswan
strongswan.general=general
strongswan.general.enabled=yes
strongswan.general.strictcrlpolicy=no
strongswan.general.uniqueids=yes
strongswan.general.cachecrls=yes
strongswan.general.nattraversal=yes
strongswan.@connection[0]=connection
strongswan.@connection[0].enabled=yes
strongswan.@connection[0].name=DMVPN
strongswan.@connection[0].type=transport
strongswan.@connection[0].localproto=gre
strongswan.@connection[0].remoteproto=gre
strongswan.@connection[0].ike=3des-md5-modp1024
strongswan.@connection[0].esp=aes128-sha1
strongswan.@connection[0].waniface=wan
strongswan.@connection[0].auto=ignore
strongswan.@connection[0].ikelifetime=28800s
strongswan.@connection[0].keylife=300s
strongswan.@connection[0].rekeymargin=30s
strongswan.@connection[0].keyingtries=%forever
strongswan.@connection[0].dpdaction=hold
strongswan.@connection[0].dpddelay=30s
strongswan.@connection[0].dpdtimeout=150s
strongswan.@secret[0]=secret
strongswan.@secret[0].enabled=yes
strongswan.@secret[0].secrettype=psk
strongswan.@secret[0].secret=secret
_______________________________________________________________________________________________________
© Virtual Access 2015
GW1000 Series User Manual
Issue: 2.4 Page 174 of 255