FireBrick IPsec (Road Warrior Howto): Difference between revisions
m (→Firewall) |
|||
The basic server config is in <tt>ipsec-ike</tt> containing a <tt>connection</tt> and <tt>roaming</tt> entry, e.g.
<syntaxhighlight>
<ipsec-ike>
<connection name="''server''" roaming-pool="''roam-pool''" auth-method="Certificate" peer-auth-method="EAP" mode="Wait" local-ID="FQDN:''server.example.com''"/>
<roaming name="''roam-pool''" ip="''[ranges of LAN IPs]''" DNS="''[DNS, e.g. 8.8.8.8]''"/>
</ipsec-ike>
</syntaxhighlight>
Each roaming user then needs an <tt>eap</tt> user record.
|