# /etc/ipsec.conf - Libreswan IPsec configuration file version 2.0 config setup # put the logs in /tmp for the UMLs, so that we can operate # without syslogd, which seems to break on UMLs logfile=/tmp/pluto.log logtime=no logappend=no plutodebug=all dumpdir=/var/tmp virtual_private=%v4:10.0.0.0/8,%v4:172.16.0.0/12,%v4:192.0.0.0/8 protostack=netkey include /testing/baseconfigs/all/etc/ipsec.d/ipsec.conf.common conn northnet-eastnet-nat ikev2=no also=eastnet # north #on north: also=northnet left=%any leftsubnet=vnet:%priv leftnexthop=192.1.3.254 leftid=%fromcert # leftcert=north leftsendcert=always leftca=%same # east right=192.1.2.23 rightnexthop=192.1.2.254 rightid=%fromcert rightcert=east rightsendcert=always