Project

General

Profile

ipsec.secrets Reference » History » Version 8

Tobias Brunner, 30.05.2010 10:34
added example for include directive

1 7 Andreas Steffen
h1. ipsec.secrets
2 7 Andreas Steffen
3 7 Andreas Steffen
4 7 Andreas Steffen
strongSwan's _/etc/ipsec.secrets_ file contains an unlimited number of the following
5 1 Martin Willi
types of secrets:
6 1 Martin Willi
7 7 Andreas Steffen
* [[RsaSecret|RSA]] defines an RSA private key
8 7 Andreas Steffen
* [[EcDsaSecret|ECDSA]] defines an ECDSA private key
9 7 Andreas Steffen
* [[PskSecret|PSK]] defines a pre-shared key
10 7 Andreas Steffen
* [[EapSecret|EAP]] defines EAP credentials
11 7 Andreas Steffen
* [[XauthSecret|XAUTH]] defines XAUTH credentials
12 7 Andreas Steffen
* [[PinSecret|PIN]] defines a smartcard PIN
13 5 Martin Willi
14 7 Andreas Steffen
15 7 Andreas Steffen
h2. Example
16 7 Andreas Steffen
17 7 Andreas Steffen
<pre>
18 5 Martin Willi
# /etc/ipsec.secrets - strongSwan IPsec secrets file
19 5 Martin Willi
20 5 Martin Willi
192.168.0.1 %any : PSK "v+NkxY9LLZvwj4qCC2o/gGrWDF2d21jL"
21 5 Martin Willi
22 5 Martin Willi
: RSA moonKey.pem
23 5 Martin Willi
24 5 Martin Willi
: XAUTH carol "4iChxLT3"
25 5 Martin Willi
26 1 Martin Willi
: XAUTH dave  "ryftzG4A"
27 8 Tobias Brunner
28 8 Tobias Brunner
# get secrets from other files
29 8 Tobias Brunner
include ipsec.*.secrets
30 7 Andreas Steffen
</pre>