# /etc/ipsec.conf - Libreswan IPsec configuration file version 2.0 config setup # put the logs in /tmp for the UMLs, so that we can operate # without syslogd, which seems to break on UMLs logfile=/tmp/pluto.log logtime=no logappend=no plutodebug=all protostack=netkey dumpdir=/tmp virtual_private=%v4:10.0.0.0/8,%v4:192.168.0.0/16,%v4:172.16.0.0/12,%v4:!192.0.2.0/24,%v6:!2001:db8:0:2::/64 conn westnet-eastnet-ikev2 # Left security gateway, subnet behind it, next hop toward right. leftckaid=WESTCKAID leftid=%fromcert # Right security gateway, subnet behind it, next hop toward left. rightckaid=EASTCKAID rightid=%fromcert also=west-east-base-ipv4 also=westnet-ipv4 also=eastnet-ipv4 include /testing/baseconfigs/all/etc/ipsec.d/ipsec.conf.common