Gitiles
Code Review Sign In
gerrit.opencord.org / ansible / role / strongswan / refs/heads/master
commit6547fdf98568d2fc30c53f2c9488d3c02ed2f63f[log] [tgz]
authorZack Williams <zdw@opennetworking.org>Mon Jul 11 10:49:46 2022 -0700
committerZack Williams <zdw@opennetworking.org>Mon Sep 05 15:20:33 2022 -0700
tree5ca2ac37f717526f2c540a2ce75a3db721c6eb9e
parent25979e26f4b2e47417145605896798f57f407616 [diff]
Remove gitreview

Fix comment for per-connection dpd/close actions

Change-Id: I12b76a6de5862af82e14eeb8b2be93c6d98884f0
3 files changed
tree: 5ca2ac37f717526f2c540a2ce75a3db721c6eb9e
  1. .cookiecutter_params.json
  2. .reuse/
  3. LICENSES/
  4. Makefile
  5. README.md
  6. VERSION
  7. defaults/
  8. files/
  9. handlers/
  10. meta/
  11. molecule/
  12. tasks/
  13. templates/
  14. vars/
README.md

strongSwan

strongSwan IPSec VPN daemon

Requirements

Requires BIRD to be installed if the VPNs are dynamic route based.

Minimum ansible version: 2.9.5

Examples

Example: policy-based VPN

strongswan_conf_install_routes: yes
strongswan_conf_connections:
  - name: tunnel1
    psk: secret
    left: 10.0.0.3
    leftid: 128.105.144.189
    left_subnets: 0.0.0.0/0
    right: 34.124.6.243
    right_subnets: 0.0.0.0/0

Example: dynamic route-based VPN

strongswan_conf_connections:
  - name: tunnel1
    vti:
      local: 169.254.0.2/30
      remote: 169.254.0.1/30
    psk: secret
    left: 10.0.0.3
    leftid: 128.105.144.189
    left_subnets: 0.0.0.0/0
    right: 34.124.6.243

Example: playbook

- hosts: all
  vars:
  roles:
    - bird
    - strongswan

License and Author

© 2020 Open Networking Foundation support@opennetworking.org

License: Apache-2.0