<div dir="ltr">Hello,<div>Is there a way by which I can specify pre-shared-keys per connection endpoint. I am looking at examples config files fromĀ <a href="http://www.strongswan.org/uml/testresults/swanctl/">http://www.strongswan.org/uml/testresults/swanctl/</a> and it seems that I can only specify PSK per host-ip and not per pair of IP.</div><div><br></div><div>In the example below, I have three hosts "home", "carol" and "dave". I want host "home" to use different PSK key based on weather its talking to carol or dave.</div><div><br></div><div>Is this possible? What would the file swanctl.conf file look like?</div><div><br></div><div>--</div><div>Thanks,</div><div>Aniruddha</div><div><br></div><div><br></div><div><pre style="color:rgb(0,0,0);word-wrap:break-word;white-space:pre-wrap"><pre style="word-wrap:break-word;white-space:pre-wrap">-- swanctl.conf example --</pre></pre><pre style="color:rgb(0,0,0);word-wrap:break-word;white-space:pre-wrap">secrets {</pre><pre style="color:rgb(0,0,0);word-wrap:break-word;white-space:pre-wrap"><span style="font-family:arial,sans-serif"> ike-home {</span>
</pre><pre style="color:rgb(0,0,0);word-wrap:break-word;white-space:pre-wrap"><pre style="word-wrap:break-word;white-space:pre-wrap"> id = 192.168.0.1
secret = 0pBpZAZqEN6Ti9sqt4ZP5EWqrt
}
</pre><div> <span style="font-family:arial,sans-serif"> ike-carol {</span><br></div> id = 192.168.0.100
secret = 0sFpZAZqEN6Ti9sqt4ZP5EWcqx
}
ike-dave {
id = 192.168.0.200
secret = 0sjVzONCF02ncsgiSlmIXeqhGN
}</pre><pre style="color:rgb(0,0,0);word-wrap:break-word;white-space:pre-wrap">}</pre><pre style="color:rgb(0,0,0);word-wrap:break-word;white-space:pre-wrap"><br></pre><pre style="color:rgb(0,0,0);word-wrap:break-word;white-space:pre-wrap"><br></pre></div></div>