Project

General

Profile

ipsec.secrets Reference » History » Version 9

Tobias Brunner, 26.08.2010 10:19

1 7 Andreas Steffen
h1. ipsec.secrets
2 7 Andreas Steffen
3 7 Andreas Steffen
4 7 Andreas Steffen
strongSwan's _/etc/ipsec.secrets_ file contains an unlimited number of the following
5 1 Martin Willi
types of secrets:
6 1 Martin Willi
7 7 Andreas Steffen
* [[RsaSecret|RSA]] defines an RSA private key
8 7 Andreas Steffen
* [[EcDsaSecret|ECDSA]] defines an ECDSA private key
9 7 Andreas Steffen
* [[PskSecret|PSK]] defines a pre-shared key
10 7 Andreas Steffen
* [[EapSecret|EAP]] defines EAP credentials
11 7 Andreas Steffen
* [[XauthSecret|XAUTH]] defines XAUTH credentials
12 7 Andreas Steffen
* [[PinSecret|PIN]] defines a smartcard PIN
13 5 Martin Willi
14 7 Andreas Steffen
15 7 Andreas Steffen
h2. Example
16 7 Andreas Steffen
17 7 Andreas Steffen
<pre>
18 5 Martin Willi
# /etc/ipsec.secrets - strongSwan IPsec secrets file
19 5 Martin Willi
20 5 Martin Willi
192.168.0.1 %any : PSK "v+NkxY9LLZvwj4qCC2o/gGrWDF2d21jL"
21 5 Martin Willi
22 5 Martin Willi
: RSA moonKey.pem
23 5 Martin Willi
24 9 Tobias Brunner
alice@strongswan.org : EAP "x3.dEhgN"
25 1 Martin Willi
26 9 Tobias Brunner
carol : XAUTH "4iChxLT3"
27 9 Tobias Brunner
28 9 Tobias Brunner
dave  : XAUTH "ryftzG4A"
29 8 Tobias Brunner
30 8 Tobias Brunner
# get secrets from other files
31 8 Tobias Brunner
include ipsec.*.secrets
32 7 Andreas Steffen
</pre>