cloudstack-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From jayapalu <...@git.apache.org>
Subject [GitHub] cloudstack issue #872: Strongswan vpn feature
Date Mon, 19 Sep 2016 09:46:02 GMT
Github user jayapalu commented on the issue:

    https://github.com/apache/cloudstack/pull/872
  
    @pdion891 
    
    Below is the Remote access vpn config, update left with the VR public ip.
    #ipsec remote access vpn configuration
    conn L2TP-PSK
            authby=psk
            pfs=no
            rekey=no
            keyingtries=3
            keyexchange=ikev1
            forceencaps=yes
            leftfirewall=yes
            leftnexthop=%defaultroute
            #
            # ----------------------------------------------------------
            # The VPN server.
            #
            # Allow incoming connections on the external network interface.
            # If you want to use a different interface or if there is no
            # defaultroute, you can use:   left=your.ip.addr.ess
            #
            left=172.26.0.151
            #
            leftprotoport=17/1701
            # If you insist on supporting non-updated Windows clients,
            # you can use:    leftprotoport=17/%any
            #
            # ----------------------------------------------------------
            # The remote user(s).
            #
            # Allow incoming connections only from this IP address.
            right=%any
            # If you want to allow multiple connections from any IP address,
            # you can use:    right=%any
            #
            rightprotoport=17/%any
            #
            # ----------------------------------------------------------
            # Change 'ignore' to 'add' to enable this configuration.
            #
            rightsubnetwithin=0.0.0.0/0
            auto=add


---
If your project is set up for it, you can reply to this email and have your
reply appear on GitHub as well. If your project does not have this feature
enabled and wishes so, or if the feature is enabled but not working, please
contact infrastructure at infrastructure@apache.org or file a JIRA ticket
with INFRA.
---

Mime
View raw message