mirror/setup-ipsec-vpn
1
0
Fork 0
mirror of synced 2024-11-26 06:46:06 +03:00
Code Issues Projects Releases Wiki Activity

Update IKEv2 script

Browse Source 
- Make IKEv2 client address pool customizable using VPN_XAUTH_POOL,
  similar to vpnsetup.sh. This is for advanced users only.
This commit is contained in:
hwdsl2 2022-02-25 21:17:09 -06:00
parent 79a344ec46
commit 32a55ec06a
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
extras/ikev2setup.sh
View File

@ -1032,6 +1032,7 @@ ANSWERS
add_ikev2_connection() { add_ikev2_connection() {
bigecho2 "Adding a new IKEv2 connection..." bigecho2 "Adding a new IKEv2 connection..."
XAUTH_POOL=${VPN_XAUTH_POOL:-'192.168.43.10-192.168.43.250'}
if ! grep -qs '^include /etc/ipsec\.d/\*\.conf$' "$IPSEC_CONF"; then if ! grep -qs '^include /etc/ipsec\.d/\*\.conf$' "$IPSEC_CONF"; then
echo >> "$IPSEC_CONF" echo >> "$IPSEC_CONF"
echo 'include /etc/ipsec.d/*.conf' >> "$IPSEC_CONF" echo 'include /etc/ipsec.d/*.conf' >> "$IPSEC_CONF"
@ -1046,7 +1047,7 @@ conn ikev2-cp
leftrsasigkey=%cert leftrsasigkey=%cert
right=%any right=%any
rightid=%fromcert rightid=%fromcert
rightaddresspool=192.168.43.10-192.168.43.250 rightaddresspool=$XAUTH_POOL
rightca=%same rightca=%same
rightrsasigkey=%cert rightrsasigkey=%cert
narrowing=yes narrowing=yes