diff options
-rw-r--r-- | etc/iked.conf | 32 |
1 files changed, 16 insertions, 16 deletions
diff --git a/etc/iked.conf b/etc/iked.conf index c15aebc5386..c61c08e679b 100644 --- a/etc/iked.conf +++ b/etc/iked.conf @@ -1,25 +1,25 @@ -# $OpenBSD: iked.conf,v 1.2 2012/05/23 16:41:33 mikeb Exp $ +# $OpenBSD: iked.conf,v 1.3 2013/03/05 14:52:02 sobrado Exp $ # # See iked.conf(5) for syntax and examples. # Configure users for the Extensible Authentication Protocol (EAP) -user "user1" "password123" -user "user2" "password456" +#user "user1" "password123" +#user "user2" "password456" # Configuration for clients connecting with EAP authentication. # Remember to set up a PKI, see ikectl(8) for more information. -ikev2 "win7" passive esp \ - from 10.1.0.0/24 to 10.2.0.0/24 \ - local any peer any \ - eap "mschap-v2" \ - config address 10.2.0.1 \ - config name-server 10.1.0.2 \ - tag "$name-$id" +#ikev2 "win7" passive esp \ +# from 10.1.0.0/24 to 10.2.0.0/24 \ +# local any peer any \ +# eap "mschap-v2" \ +# config address 10.2.0.1 \ +# config name-server 10.1.0.2 \ +# tag "$name-$id" # Configuration for a client authenticating with a pre-shared key. -ikev2 esp \ - from 10.3.0.0/24 to 10.1.0.0/24 \ - from 10.5.0.0/24 to 10.1.0.0/24 \ - from 10.5.0.0/24 to 172.16.1.0/24 \ - local 192.168.1.1 peer 192.168.2.1 \ - psk "you-should-not-use-psk-authentication!" +#ikev2 esp \ +# from 10.3.0.0/24 to 10.1.0.0/24 \ +# from 10.5.0.0/24 to 10.1.0.0/24 \ +# from 10.5.0.0/24 to 172.16.1.0/24 \ +# local 192.168.1.1 peer 192.168.2.1 \ +# psk "you-should-not-use-psk-authentication!" |