<div dir="ltr"><div>site A-----Linux strongSwan U4.3.4/K2.6.31.5-0.1-desktop</div><div><br></div><div>config setup</div><div>       #strictcrlpolicy=no</div><div><span class="" style="white-space:pre">     </span>charonstart=no</div><div><span class="" style="white-space:pre">     </span>plutostderrlog = /var/log/pluto.log</div><div><span class="" style="white-space:pre">        </span>#plutodebug=control</div><div><span class="" style="white-space:pre">        </span>#syslog=auth.debug</div><div><span class="" style="white-space:pre"> </span>#nhelpers=0</div><div><span class="" style="white-space:pre">        </span>#plutowait=yes</div><div><span class="" style="white-space:pre">     </span>#syslog=<a href="http://auth.info">auth.info</a></div><div><br></div><div>conn %default</div><div><span class="" style="white-space:pre">        </span># keyingtries default to %forever64.42.53.204</div><div><span class="" style="white-space:pre">      </span>#keyingtries=3</div><div><span class="" style="white-space:pre">     </span># Sig keys (default: %dnsondemand)</div><div><span class="" style="white-space:pre"> </span>#leftrsasigkey=%cert</div><div><span class="" style="white-space:pre">       </span>#rightrsasigkey=%cert</div><div><span class="" style="white-space:pre">      </span># Lifetimes, defaults are 1h/8hrs</div><div><span class="" style="white-space:pre">  </span>#ikelifetime=20m</div><div><span class="" style="white-space:pre">   </span>#keylife=1h</div><div><span class="" style="white-space:pre">        </span>#rekeymargin=8m</div><div><span class="" style="white-space:pre">    </span>authby=secret</div><div><span class="" style="white-space:pre">      </span>ike=aes256-sha1-modp1024!</div><div><span class="" style="white-space:pre">  </span>esp=aes256-sha1!</div><div><span class="" style="white-space:pre">   </span>keyingtries=%forever</div><div><span class="" style="white-space:pre">       </span>ikelifetime=86400</div><div>        keylife=28800</div><div>conn Lanline1</div><div>        also=Lanline</div><div><span class="" style="white-space:pre">       </span>leftsubnet=<a href="http://10.19.227.0/24">10.19.227.0/24</a></div><div><span class="" style="white-space:pre">        </span>rightsubnet=<a href="http://10.194.79.0/24">10.194.79.0/24</a></div><div><span class="" style="white-space:pre">       </span>auto=start</div><div>conn Lanline</div><div><span class="" style="white-space:pre">      </span>left=50.78.47.90</div><div><span class="" style="white-space:pre">   </span>right=75.149.172.88</div><div>        keyexchange=ikev1<br></div><div><span class="" style="white-space:pre">  </span>type=tunnel</div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div><br></div><div>SiteB ------- strongSwan U5.2.2/K4.2.3-1-default</div><div><br></div><div>conn %default</div><div>        authby=secret</div><div>        keyingtries=1</div><div><span class="" style="white-space:pre"> </span>keyexchange=ikev1</div><div><span class="" style="white-space:pre">  </span>ike=aes128-sha256-modp2048!</div><div><span class="" style="white-space:pre">        </span>esp=aes128-sha256!</div><div>conn Olympia1</div><div><span class="" style="white-space:pre">     </span>also=Olympia</div><div>        leftsubnet=<a href="http://10.194.79.0/24">10.194.79.0/24</a></div><div>        rightsubnet=<a href="http://10.19.227.0/24">10.19.227.0/24</a></div><div>        auto=start</div><div>conn Olympia</div><div>        left=75.149.172.88</div><div><span class="" style="white-space:pre">     </span>keyexchange=ikev1</div><div>        right=50.78.47.90</div><div>        type=tunnel</div><div><br></div></div>